Vulnerability Description
SQL injection vulnerability in wallpaper.php in Wallpaper Website (Wallpaper Complete Website) 1.0.09 allows remote attackers to execute arbitrary SQL commands via the wallpaperid parameter.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Wallpaper | Wallpaper Complete Website | 1.0.09 |
References
- http://secunia.com/advisories/23084Vendor Advisory
- http://www.securityfocus.com/bid/21274Exploit
- http://www.vupen.com/english/advisories/2006/4687
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30528
- https://www.exploit-db.com/exploits/2835
- http://secunia.com/advisories/23084Vendor Advisory
- http://www.securityfocus.com/bid/21274Exploit
- http://www.vupen.com/english/advisories/2006/4687
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30528
- https://www.exploit-db.com/exploits/2835
FAQ
What is CVE-2006-6214?
CVE-2006-6214 is a vulnerability with a CVSS score of 7.5 (HIGH). SQL injection vulnerability in wallpaper.php in Wallpaper Website (Wallpaper Complete Website) 1.0.09 allows remote attackers to execute arbitrary SQL commands via the wallpaperid parameter.
How severe is CVE-2006-6214?
CVE-2006-6214 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-6214?
Check the references section above for vendor advisories and patch information. Affected products include: Wallpaper Wallpaper Complete Website.