CVE-2006-6177

{"id": "CVE-2006-6177", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2006-11-30T16:28:00.000", "references": [{"url": "http://secunia.com/advisories/23054", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securityreason.com/securityalert/1931", "source": "cve@mitre.org"}, {"url": "http://www.neocrome.net/page.php?id=2233", "source": "cve@mitre.org"}, {"url": "http://www.nukedx.com/?getxpl=52", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.nukedx.com/?viewdoc=52", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/452269/100/100/threaded", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/4668", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30466", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "SQL injection vulnerability in system/core/users/users.profile.inc.php in Neocrome Seditio 1.10 and earlier allows remote authenticated users to execute arbitrary SQL commands via a double-url-encoded id parameter to users.php that begins with a valid filename, as demonstrated by \"default.gif\" followed by an encoded NULL and ' (apostrophe) (%2500%2527)."}, {"lang": "es", "value": "Vulnerabilidad de inyecci\u00f3n SQL en system/core/users/users.profile.inc.php de Neocrome Seditio 1.10 y anteriores permite a usuarios autenticados remotamente ejecutar comandos SQL de su elecci\u00f3n a trav\u00e9s del par\u00e1metro id doblemente codificado en forma de url para users.php que comienza con un nombre de archivo v\u00e1lido, como ha sido demostrado por \"default.gif\" seguido por un NULL codificado y un ' (ap\u00f3strofe) (%2500%2527)."}], "lastModified": "2018-10-17T21:47:06.470", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:neocrome:seditio:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B920B0A-FD87-40E3-A0FE-5A37A3072D82", "versionEndIncluding": "1.10"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}