CVE-2006-0410 : SQL injection vulnerability in ADOdb before 4.71, when using PostgreSQL, allows

SQL injection vulnerability in ADOdb before 4.71, when using PostgreSQL, allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors involving binary strings.

Published 2006-01-25 02:03:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Vulnerability category: Sql Injection

Products affected by CVE-2006-0410

John Lim » Adodb » Version: 4.66
cpe:2.3:a:john_lim:adodb:4.66:*:*:*:*:*:*:*
Matching versions
John Lim » Adodb » Version: 4.68
cpe:2.3:a:john_lim:adodb:4.68:*:*:*:*:*:*:*
Matching versions
John Lim » Adodb » Version: 4.70
cpe:2.3:a:john_lim:adodb:4.70:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2006-0410

EPSS FAQ

1.50%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 79 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2006-0410

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

References for CVE-2006-0410

http://secunia.com/advisories/19590

About Secunia Research | Flexera

CVEs referencing this url
http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml

Cacti: Multiple vulnerabilities in included ADOdb (GLSA 200604-07) — Gentoo security

CVEs referencing this url
https://exchange.xforce.ibmcloud.com/vulnerabilities/24314

ADOdb PostgreSQL SQL injection CVE-2006-0410 Vulnerability Report
http://secunia.com/advisories/19591

About Secunia Research | Flexera

CVEs referencing this url
http://www.debian.org/security/2006/dsa-1031

[SECURITY] [DSA 1031-1] New cacti packages fix several vulnerabilities

CVEs referencing this url
http://secunia.com/advisories/18575

About Secunia Research | Flexera
Patch;Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200602-02.xml

ADOdb: PostgresSQL command injection (GLSA 200602-02) — Gentoo security
http://secunia.com/advisories/19691

About Secunia Research | Flexera

CVEs referencing this url
http://www.vupen.com/english/advisories/2006/0315

Site en construction
http://www.debian.org/security/2006/dsa-1029

[SECURITY] [DSA 1029-1] New libphp-adodb packages fix several vulnerabilities

CVEs referencing this url
http://www.osvdb.org/22705

404 Not Found
http://www.securityfocus.com/bid/16364
http://www.debian.org/security/2006/dsa-1030

[SECURITY] [DSA 1030-1] New moodle packages fix several vulnerabilities

CVEs referencing this url
http://www.vupen.com/english/advisories/2006/0448

Site en construction

CVEs referencing this url
http://secunia.com/advisories/18732

About Secunia Research | Flexera

CVEs referencing this url
http://secunia.com/advisories/19555

About Secunia Research | Flexera

CVEs referencing this url
http://sourceforge.net/project/shownotes.php?release_id=387862&group_id=42718

ADOdb download | SourceForge.net
Patch
http://secunia.com/advisories/18745

About Secunia Research | Flexera

Jump to

Vulnerability Details : CVE-2006-0410

Products affected by CVE-2006-0410

Exploit prediction scoring system (EPSS) score for CVE-2006-0410

CVSS scores for CVE-2006-0410

References for CVE-2006-0410