Vulnerability Database

290,301

Total vulnerabilities in the database

CVE-2006-3292

SQL injection vulnerability in the Search gadget in Jaws 0.6.2 allows remote attackers to execute arbitrary SQL commands via queries with the "LIKE" keyword in the searchdata parameter (search field).

  • Published: Jun 29, 2006
  • Updated: Apr 13, 2023
  • CVE: CVE-2006-3292
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
jaws / jaws 0.6.2 0.6.2.x