Vulnerabilities > CVE-2006-2854 - Unspecified vulnerability in Ibwd Guestbook 1.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN ibwd
exploit available
Summary
SQL injection vulnerability in index.php in iBWd Guestbook 1.0 allows remote attackers to execute arbitrary SQL commands via the offset parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | IBWd Guestbook 1.0 Index.PHP SQL Injection Vulnerability. CVE-2006-2854 . Webapps exploit for php platform |
| id | EDB-ID:27962 |
| last seen | 2016-02-03 |
| modified | 2006-06-03 |
| published | 2006-06-03 |
| reporter | SpC-x |
| source | https://www.exploit-db.com/download/27962/ |
| title | IBWd Guestbook 1.0 Index.PHP SQL Injection Vulnerability |
References
- http://downloads.securityfocus.com/vulnerabilities/exploits/iBWD_poc.txt
- http://downloads.securityfocus.com/vulnerabilities/exploits/iBWD_poc.txt
- http://secunia.com/advisories/20509
- http://secunia.com/advisories/20509
- http://www.securityfocus.com/bid/18256
- http://www.securityfocus.com/bid/18256
- http://www.vupen.com/english/advisories/2006/2193
- http://www.vupen.com/english/advisories/2006/2193
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26996
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26996