Vulnerability CVE-2006-1930


Published: 2006-04-20   Modified: 2012-02-12

Description:
** DISPUTED ** Multiple SQL injection vulnerabilities in userscript.php in Green Minute 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) huserid, (2) pituus, or (3) date parameters. NOTE: this issue has been disputed by the vendor, saying "those parameters mentioned ARE checked (preg_match) before they are used in SQL-query... If someone decided to add SQL-injection stuff to certain parameter, they would see an error text, but only because _nothing_ was passed inside that parameter (to MySQL-database)." As allowed by the vendor, CVE investigated this report on 20060525 and found that the demo site demonstrated a non-sensitive SQL error when given standard SQL injection manipulations.

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.4/10
4.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
None
Affected software
Hoito -> Green minute 

 References:
http://xforce.iss.net/xforce/xfdb/25942
http://www.osvdb.org/25207
http://pridels0.blogspot.com/2006/04/green-minute-sql-inj-vuln.html
http://osvdb.org/ref/25/25207-dispute.txt
http://hoito.org/en/products/

Copyright 2024, cxsecurity.com

 

Back to Top