CVE-2006-5242

SQL injection vulnerability in Etomite Content Management System (CMS) before 0.6.1.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Score7.5
Access VectorNETWORK
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactPARTIAL
Integrity ImpactPARTIAL
Availability ImpactPARTIAL
Published2006-10-11 08:07:00.000-04
Last Modified2011-12-08 12:00:00.000-05

Vulnerable Software List

VendorProductVersions
Etomite Etomite 0.6, 0.6.1

References

SourceLink
CONFIRMhttp://www.etomite.org/forums/index.php?showtopic=6095
BID20449
VUPENADV-2006-3975