1. Home
  2. CVE Database
  3. CVE-2006-3576
HIGH · 7.5

CVE-2006-3576

SQL injection vulnerability in search.php in SenseSites CommonSense CMS 5.0 allows remote attackers to execute arbitrary SQL commands via the Date parameter. NOTE: the provenance of this information ...

Vulnerability Description

SQL injection vulnerability in search.php in SenseSites CommonSense CMS 5.0 allows remote attackers to execute arbitrary SQL commands via the Date parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
SensesitesCommonsense Cms5.0

References

FAQ

What is CVE-2006-3576?

CVE-2006-3576 is a vulnerability with a CVSS score of 7.5 (HIGH). SQL injection vulnerability in search.php in SenseSites CommonSense CMS 5.0 allows remote attackers to execute arbitrary SQL commands via the Date parameter. NOTE: the provenance of this information ...

How severe is CVE-2006-3576?

CVE-2006-3576 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-3576?

Check the references section above for vendor advisories and patch information. Affected products include: Sensesites Commonsense Cms.