CVE-2006-5217

{"id": "CVE-2006-5217", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2006-10-10T04:06:00.000", "references": [{"url": "http://securityreason.com/securityalert/1700", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/447914/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/20378", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29380", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "SQL injection vulnerability in giris_yap.asp in Emek Portal 2.1 allows remote attackers to execute arbitrary SQL commands by simultaneously injecting into the user name and pass fields in uyegiris.asp, also known as the Kullanici Adi (k_a) and Sifre (sifre) parameters."}, {"lang": "es", "value": "Vulnerabilidad de inyecci\u00f3n SQL en giris_yap.asp de Emek Portal 2.1 permite a un atacante remoto ejecutar comandos SQL de su elecci\u00f3n a trav\u00e9s la inyecci\u00f3n simultanea dentro del nombre de usuario y los campos de contrase\u00f1a, tambi\u00e9n conocidos como los par\u00e1metros Kullanici Adi (k_a) y Sifre (sifre)."}], "lastModified": "2018-10-17T21:41:41.000", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:emek_portal:emek_portal:2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0FEDBDCF-FEA6-4BA6-936C-1BFE07586370"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}