CVE-2006-5932
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2006-5932
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Kahua before 0.7, when running multiple applications under a single supervisor, grants application access on the basis of username instead of username and database name, which allows remote authenticated users to obtain unauthorized access if different databases assign the same username to different user accounts.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Kahua 权限认证和访问控制漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Kahua的0.7之前版本,在单个监管者下运行多个应用程序时,基于用户名而非用户名和数据库名来授予应用程序访问权,如果不同数据库给不同用户账户分配了同样的用户名则远程认证用户可以获取未授权的访问。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2006-5932
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2006-5932
Please Login to view more intelligence information
- http://www.timedia.co.jp/news/2467470581x_refsource_CONFIRM
- http://www.kahua.org/cgi-bin/kahua.fcgi/kahua-web/show/KSA/KSA2006-001x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2006-5932
Same Patch Batch · n/a · 2006-11-16 · 15 CVEs total
| CVE-2006-5926 | Vallheru Mail.PHP多个SQL注入漏洞 | |
| CVE-2006-5927 | ASP Scripter Products CPLogin.ASP SQL注入漏洞 | |
| CVE-2006-5928 | PHPJobscheduler多个远程文件包含漏洞 | |
| CVE-2006-5929 | Phpjobscheduler firepjs.php PHP远程文件包含漏洞 | |
| CVE-2006-5930 | Aigaion多个远程文件包含漏洞 | |
| CVE-2006-5931 | Aigaion Web based bibliography management system 多个PHP远程文件包含漏洞 | |
| CVE-2006-5933 | UltraSite pdate.asp SQL注入漏洞 | |
| CVE-2006-5934 | Estate Agent Manager Default.ASP SQL注入漏洞 | |
| CVE-2006-5935 | ShopSystems Index.PHP SQL注入漏洞 | |
| CVE-2006-5936 | SiteXpress E-Commerce System Dept.ASP SQL注入漏洞 | |
| CVE-2006-5937 | Grisoft AVG Anti-Virus 多个整数溢出 | |
| CVE-2006-5938 | Grisoft AVG Anti-Virus未明漏洞 | |
| CVE-2006-5939 | Grisoft AVG Anti-Virus 拒绝服务漏洞 | |
| CVE-2006-5940 | Grisoft AVG Anti-Virus 未明漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service - CVE-2026-8267
Open5GS SMF smf_nsmf_handle_created_data_in_vsmf denial of s - CVE-2026-8266
Open5GS SMF gsm-build.c gsm_build_pdu_session_establishment_
V. Comments for CVE-2006-5932
No comments yet