Vulnerabilities > CVE-2006-0520 - SQL Injection vulnerability in Dragoran Portal Module 1.3
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability index.php in Dragoran Portal module 1.3 for Invision Power Board (IPB) allows remote attackers to execute arbitrary SQL commands via the site parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Invision Power Board Dragoran Portal Mod <= 1.3 SQL Injection Exploit. CVE-2006-0520. Webapps exploit for php platform |
id | EDB-ID:1461 |
last seen | 2016-01-31 |
modified | 2006-01-31 |
published | 2006-01-31 |
reporter | SkOd |
source | https://www.exploit-db.com/download/1461/ |
title | Invision Power Board Dragoran Portal Mod <= 1.3 - SQL Injection Exploit |
Nessus
NASL family | CGI abuses |
NASL id | INVISION_POWER_BOARD_DRAGORAN_SITE_SQL_INJECTION.NASL |
description | The installation of Invision Power Board on the remote host contains an optional plugin module known as Dragoran Portal that fails to sanitize input to the |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 20835 |
published | 2006-02-01 |
reporter | This script is Copyright (C) 2006-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/20835 |
title | Invision Power Board Dragoran Portal Module index.php site Parameter SQL Injection |