Vulnerabilities > CVE-2006-4328 - SQL Injection vulnerability in Cloudnine Interactive Links Manager 20060612
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability in admin.php in CloudNine Interactive Links Manager 2006-06-12, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the nick parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Packetstorm
data source | https://packetstormsecurity.com/files/download/49995/EV0136.txt |
id | PACKETSTORM:49995 |
last seen | 2016-12-05 |
published | 2006-09-14 |
reporter | Aliaksandr Hartsuyeu |
source | https://packetstormsecurity.com/files/49995/EV0136.txt.html |
title | EV0136.txt |