CVE-2006-6457

EPSS 0.35% · P57 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-6457

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

tiki-wiki_rss.php in Tikiwiki 1.9.5, 1.9.2, and possibly other versions allows remote attackers to obtain sensitive information (MySQL username and password) via an invalid (large or negative) ver parameter, which leaks the information in an error message.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Tikiwiki 'tiki-wiki_rss.php'敏感信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Tikiwiki 1.9.5、1.9.2和可能其他版本中的tiki-wiki_rss.php存在敏感信息泄露漏洞。远程攻击者可以通过无效的(大或者负)ver参数来获取敏感信息(MySQL用户名和密码)，该参数导致系统在出错消息内泄露这些信息。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-6457

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-6457

请登录查看更多情报信息。

http://www.securityfocus.com/archive/1/452639/100/200/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2006-6457

Same Patch Batch · n/a · 2006-12-11 · 19 CVEs total

CVE-2006-6470		Xerox WorkCentre和WorkCentre Pro SNMP Agent对象返回错误漏洞
CVE-2006-6461		Yourfreeworld Stylish Text Ads Script 'tr1.php'id参数安全路径泄露漏洞
CVE-2006-6460		Yourfreeworld.com Short Url & Url Tracker Script 'login.php'敏感信息泄露漏洞
CVE-2006-6459		PHPBB Toplist 'toplist.php'跨站脚本攻击(XSS)漏洞
CVE-2006-6458		Sophos Anti-Virus 畸形的RAR文档拒绝服务漏洞
CVE-2006-6456		Microsoft Word宏权限绕过任意代码执行漏洞(MS07-014)
CVE-2006-6473		Xerox WorkCentre和WorkCentre Pro 多个未明漏洞
CVE-2006-6472		Xerox WorkCentre和WorkCentre Pro 'httpd.conf'未明安全漏洞
CVE-2006-6471		Xerox WorkCentre和WorkCentre Pro 文件使用弱许可未明漏洞
CVE-2006-5871		Linux Kernel 本地拒绝服务漏洞
CVE-2006-6469		Xerox WorkCentre和WorkCentre Pro PostgreSQL守护程序安全漏洞
CVE-2006-6468		Xerox WorkCentre和WorkCentre Pro 合格域名(FQDN)未明安全漏洞
CVE-2006-6467		Xerox WorkCentre和WorkCentre Pro 未明SMB文件资源的访问漏洞
CVE-2006-6466		WikyBlog 'WBmap.php'多个跨站脚本攻击漏洞
CVE-2006-6465		WikyBlog 'WBmap.php'目录遍历漏洞
CVE-2006-6464		Midicart viewcart PHP多个输入验证和认证绕过漏洞
CVE-2006-6463		MidiCart 'add.php' 未限制文件上载漏洞
CVE-2006-6462		CM68 News 'oldnews.inc.php'远程文件包含漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2006-6457

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2006-6457

I. Basic Information for CVE-2006-6457

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-6457

III. Intelligence Information for CVE-2006-6457

Same Patch Batch · n/a · 2006-12-11 · 19 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2006-6457

Leave a comment