漏洞关键信息 漏洞名称: Forum AnyBoard - SQL Injection By Firewall 发布日期: 2006.12.29 作者: Firewall1954 风险等级: Medium CVE编号: CVE-2006-6784 CWE编号: CWE-Other CVSS Base Score: 7.5/10 CVSS子评分: - Impact Subscore: 6.4/10 - Exploitability Subscore: 10/10 攻击复杂度: Low 影响: - Confidentiality Impact: Partial - Integrity Impact: Partial - Availability Impact: Partial 受影响的应用: Forum AnyBoard 源代码链接: http://netbula.com/download/anyboard_free.zip 错误描述: SQL injection in login user. ' or 'x'='x 联系信息: Firewall1954 (at) hotmail (dot) com [email concealed] 感谢: Her0