CVE-2006-1012 in WordPressinfo

Summary

SQL injection vulnerability in WordPress 1.5.2, and possibly other versions before 2.0, allows remote attackers to execute arbitrary SQL commands via the User-Agent field in an HTTP header for a comment.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

03/06/2006

Disclosure

03/06/2006

Moderation

VulDB entry created

Entries

VDB-29009 (1)

CPE

ready

CWE

CWE-89 (Confirmed)

CVSS

7.3

EPSS

0.01865

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2006-1012
NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-1012
CVE Details	https://www.cvedetails.com/cve/CVE-2006-1012/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!