CVE-2006-3940

phpBB-Auction 1.x - 'auction_store.php?u' SQL Injection

Severity Score

7.5

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Multiple SQL injection vulnerabilities in phpbb-Auction allow remote attackers to execute arbitrary SQL commands via (1) the ar parameter in auction_room.php and (2) the u parameter in auction_store.php. NOTE: the auction_rating.php vector is already covered by CVE-2005-1234. NOTE: the original disclosure states that the product name is "PHP-Auction", but this is probably an error.

Múltiples vulnerabilidades de inyección SQL en phpbb-Auction permiten a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro (1) "ar" en auction_room.php y (2) "u" en auction_store.php.
NOTA: El vector auction_rating.php está ya descrito en CVE-2005-1234.
NOTA: La descripción original apunta que el nombre de producto es "PHP-Auction", pero es un error probablemente.

*Credits: N/A

CVSS Scores

NISTv2 7.5

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2006-07-26 First Exploit
2006-07-31 CVE Reserved
2006-07-31 CVE Published
2023-06-04 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CAPEC

References (7)

URL	Tag	Source
http://securityreason.com/securityalert/1306	Third Party Advisory
http://www.securityfocus.com/archive/1/441190/100/0/threaded	Mailing List
http://www.securityfocus.com/bid/19179	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/28006	Vdb Entry

URL	Date	SRC
https://www.exploit-db.com/exploits/28282	2006-07-26
https://www.exploit-db.com/exploits/28281	2006-07-26
http://www.aria-security.net/advisory/phpauction.txt	2024-08-07

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Phpbb Group Search vendor "Phpbb Group"		Phpbb-auction Search vendor "Phpbb Group" for product "Phpbb-auction"				1.0m Search vendor "Phpbb Group" for product "Phpbb-auction" and version "1.0m"		-		Affected
Phpbb Group Search vendor "Phpbb Group"		Phpbb-auction Search vendor "Phpbb Group" for product "Phpbb-auction"				1.2m Search vendor "Phpbb Group" for product "Phpbb-auction" and version "1.2m"		-		Affected
Phpbb Group Search vendor "Phpbb Group"		Phpbb-auction Search vendor "Phpbb Group" for product "Phpbb-auction"				1.3m Search vendor "Phpbb Group" for product "Phpbb-auction" and version "1.3m"		-		Affected