CVE-2006-0410

5 documents5 sources
Severity
5.0MEDIUM
EPSS
1.3%
top 20.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
John LIM Adodb
Timeline
PublishedJan 25
Latest updateMay 1

Description

SQL injection vulnerability in ADOdb before 4.71, when using PostgreSQL, allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors involving binary strings.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

Debianlibphp-adodb< 4.72-0.1+3
NVDjohn_lim/adodb4.66, 4.68, 4.70+2
Debiancacti< 0.8.6d-1+3

Patches

Patch: secunia.comPatch: sourceforge.netPatch: secunia.com

🔴Vulnerability Details

3
GHSA
GHSA-8q7p-vwh5-65w4: SQL injection vulnerability in ADOdb before 42022-05-01
CVEList
CVE-2006-0410: SQL injection vulnerability in ADOdb before 42006-01-25
OSV
CVE-2006-0410: SQL injection vulnerability in ADOdb before 42006-01-25

📋Vendor Advisories

1
Debian
CVE-2006-0410: cacti - SQL injection vulnerability in ADOdb before 4.71, when using PostgreSQL, allows ...2006
CVE-2006-0410 (MEDIUM CVSS 5) | SQL injection vulnerability in ADOd | cvebase.io