Vulnerability Details CVE-2006-2302
SQL injection vulnerability in admin_default.asp in DUGallery 2.x allows remote attackers to execute arbitrary SQL commands via the (1) Login or (2) password field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://securityreason.com/securityalert/867
- http://www.securityfocus.com/archive/1/433410
- http://www.securityfocus.com/bid/17918
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26374
- http://securityreason.com/securityalert/867
- http://www.securityfocus.com/archive/1/433410
- http://www.securityfocus.com/bid/17918
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26374