CVE-2006-3544
published 2006-07-13CVE-2006-3544: Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 1.3 Final allow remote attackers to execute arbitrary SQL commands via the CODE parameter…
PriorityP333high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.35%
68.0th percentile
Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 1.3 Final allow remote attackers to execute arbitrary SQL commands via the CODE parameter in a (1) Stats, (2) Mail, and (3) Reg action in index.php. NOTE: the developer has disputed this issue, stating that "At no point does the CODE parameter touch the database. The CODE parameter is used in a SWITCH statement to determine which function to run.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cakephp | cakephp | >= 1.0.1.2708 < 1.1.8.3544 | 1.1.8.3544 |
| invision_power_services | invision_board | — | — |
| invision_power_services | invision_board | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9p4q-cqwc-mf63: ** DISPUTED ** Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 1
ghsa_unreviewed·2022-05-01
CVE-2006-3544 [HIGH] GHSA-9p4q-cqwc-mf63: ** DISPUTED ** Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 1
** DISPUTED ** Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 1.3 Final allow remote attackers to execute arbitrary SQL commands via the CODE parameter in a (1) Stats, (2) Mail, and (3) Reg action in index.php. NOTE: the developer has disputed this issue, stating that "At no point does the CODE parameter touch the database. The CODE parameter is used in a SWITCH statement to determine which function to run."
GHSA
CakePHP directory traversal vulnerability allows remote attackers to read arbitrary files
ghsa·2022-05-01
CVE-2006-5031 [MEDIUM] CWE-22 CakePHP directory traversal vulnerability allows remote attackers to read arbitrary files
CakePHP directory traversal vulnerability allows remote attackers to read arbitrary files
Directory traversal vulnerability in `app/webroot/js/vendors.php` in Cake Software Foundation CakePHP before 1.1.8.3544 allows remote attackers to read arbitrary files via a `..` (dot dot) in the file parameter, followed by a filename ending with `%00` and a `.js` filename.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://securityreason.com/securityalert/1225http://www.osvdb.org/30084http://www.securityfocus.com/archive/1/438961/100/0/threadedhttp://www.securityfocus.com/archive/1/439629/100/0/threadedhttp://www.securityfocus.com/bid/18782https://exchange.xforce.ibmcloud.com/vulnerabilities/27555http://securityreason.com/securityalert/1225http://www.osvdb.org/30084http://www.securityfocus.com/archive/1/438961/100/0/threadedhttp://www.securityfocus.com/archive/1/439629/100/0/threadedhttp://www.securityfocus.com/bid/18782https://exchange.xforce.ibmcloud.com/vulnerabilities/27555
2006-07-13
Published