Vulnerability Database

290,018

Total vulnerabilities in the database

CVE-2006-3054

Multiple SQL injection vulnerabilities in VBZooM 1.11 allow remote attackers to execute arbitrary SQL commands via the (1) sobjectID or (2) MAINID parameters to (a) show.php or (3) MainID parameter to (b) subject.php.

  • Published: Jun 16, 2006
  • Updated: Apr 13, 2023
  • CVE: CVE-2006-3054
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
vbzoom / vbzoom 1.11 1.11.x