Vulnerabilities > CVE-2006-3610 - Information Disclosure vulnerability in Orbitcoders Orbitmatrix 1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
index.php in Orbitcoders OrbitMATRIX 1.0 allows remote attackers to obtain sensitive information (partial database schema) via a modified page_name parameter, which reflects portions of an SQL query in the result. NOTE: it is not clear whether the information is target-specific. If not, then this issue is not an exposure.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |