Vulnerability CVE-2006-1278

Vulnerability CVE-2006-1278

Published: 2006-03-19 Modified: 2012-02-12

Description:

	Topic	Author	Date
Med.	@1 File Store Multiple XSS and SQL Injection Vulnerabilities	alex evuln com	24.03.2006

Type:

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
6.8/10	6.4/10	8.6/10

Affected software
Upoint -> @1 file store

http://evuln.com/vulns/95/summary.html

http://securityreason.com/securityalert/619

http://securitytracker.com/id?1015826

http://www.attrition.org/pipermail/vim/2009-August/002246.html

http://www.securityfocus.com/archive/1/428659/100/0/threaded

http://www.securityfocus.com/bid/17090

http://www.securityfocus.com/bid/30182

http://www.vupen.com/english/advisories/2006/0943

https://exchange.xforce.ibmcloud.com/vulnerabilities/25183

https://exchange.xforce.ibmcloud.com/vulnerabilities/43718

https://exchange.xforce.ibmcloud.com/vulnerabilities/43724

https://www.exploit-db.com/exploits/6040