{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-24T23:07:17.916","vulnerabilities":[{"cve":{"id":"CVE-2006-5509","sourceIdentifier":"cve@mitre.org","published":"2006-10-25T22:07:00.000","lastModified":"2026-06-16T22:31:20.863","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Eval injection vulnerability in addentry.php in WoltLab Burning Book 1.1.2 allows remote attackers to execute arbitrary PHP code via crafted POST requests that store PHP code in a database that is later processed by eval, as demonstrated using SQL injection via the n parameter."},{"lang":"es","value":"Vulnerabilidad de inyección de Eval en el archivo addentry.php de WoltLab Burning Book 1.1.2 permite a atacantes remotos la ejecución de código PHP de su elección mediante peticiones POST manipuladas que almacenan código PHP en la Base de Datos que son luego procesados por el \"eval\", como el demostrado usando inyecciones de SQL a través del parámetros n."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:woltlab:burning_book:1.1.2:*:*:*:*:*:*:*","matchCriteriaId":"3B919D8D-D6E9-4171-9D59-8CA72EA78210"}]}]}],"references":[{"url":"http://secunia.com/advisories/22442","source":"cve@mitre.org"},{"url":"http://securityreason.com/securityalert/1774","source":"cve@mitre.org"},{"url":"http://www.security.nnov.ru/Odocument711.html","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/archive/1/448796/100/100/threaded","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/20563","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2006/4062","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/29599","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/22442","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://securityreason.com/securityalert/1774","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.security.nnov.ru/Odocument711.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/archive/1/448796/100/100/threaded","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/20563","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2006/4062","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/29599","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}