Vulnerabilities > CVE-2006-5802 - SQL Injection vulnerability in Webdrivers Simple Forum Message_details.PHP

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

the-web-drivers

exploit available

NVD

Published: 2006-11-08

Updated: 2017-10-19

Summary

SQL injection vulnerability in message_details.php in The Web Drivers Simple Forum, dated 20060318, allows remote attackers to execute arbitrary SQL commands via the id parameter.

Vulnerable Configurations

Part	Description	Count
Application	The_Web_Drivers THE WEB Drivers Simple Forum *	1

Exploit-Db

description	Webdrivers Simple Forum (message_details.php) SQL Injection Exploit. CVE-2006-5802. Webapps exploit for php platform
file	exploits/php/webapps/2722.pl
id	EDB-ID:2722
last seen	2016-01-31
modified	2006-11-05
platform	php
port
published	2006-11-05
reporter	Bl0od3r
source	https://www.exploit-db.com/download/2722/
title	Webdrivers Simple Forum message_details.php SQL Injection Exploit
type	webapps

Summary

Vulnerable Configurations

Exploit-Db

References