CVE-2006-1924
published 2006-04-20CVE-2006-1924: SQL injection vulnerability in functions/db_api.php in LinPHA 1.1.1 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
PriorityP432medium6.4CVSS 2.0
AVNACLAuNCPIPAN
EPSS
1.27%
66.2th percentile
SQL injection vulnerability in functions/db_api.php in LinPHA 1.1.1 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linpha | linpha | — | — |
| linpha | linpha | — | — |
CVSS provenance
nvdv2.06.4MEDIUMAV:N/AC:L/Au:N/C:P/I:P/A:N
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-82fp-m238-fh5h: SQL injection vulnerability in functions/db_api
ghsa_unreviewed·2022-05-01
CVE-2006-1924 [MEDIUM] GHSA-82fp-m238-fh5h: SQL injection vulnerability in functions/db_api
SQL injection vulnerability in functions/db_api.php in LinPHA 1.1.1 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
Red Hat
CVE-2007-3635: Multiple unspecified vulnerabilities in the G/PGP (GPG) Plugin before 2
vendor_redhat·CVSS 9.3
CVE-2007-3635 [CRITICAL] CVE-2007-3635: Multiple unspecified vulnerabilities in the G/PGP (GPG) Plugin before 2
Multiple unspecified vulnerabilities in the G/PGP (GPG) Plugin before 2.1 for Squirrelmail might allow "local authenticated users" to inject certain commands via unspecified vectors. NOTE: this might overlap CVE-2005-1924, CVE-2006-4169, or CVE-2007-3634.
Statement: Not vulnerable. This plugin is not shipped with Squirrelmail in Red Hat Enterprise Linux.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://attrition.org/pipermail/vim/2006-April/000709.htmlhttp://secunia.com/advisories/19719http://www.osvdb.org/24817http://www.securityfocus.com/bid/17619http://www.vupen.com/english/advisories/2006/1424https://exchange.xforce.ibmcloud.com/vulnerabilities/26268http://attrition.org/pipermail/vim/2006-April/000709.htmlhttp://secunia.com/advisories/19719http://www.osvdb.org/24817http://www.securityfocus.com/bid/17619http://www.vupen.com/english/advisories/2006/1424https://exchange.xforce.ibmcloud.com/vulnerabilities/26268
2006-04-20
Published