CVE-2006-5145

Published: Oct 5, 2006Modified: Apr 23, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple SQL injection vulnerabilities in OlateDownload 3.4.0 allow remote attackers to execute arbitrary SQL commands via the (1) page parameter in details.php or the (2) query parameter in search.php.

Affected (1)

Products: Olate: Olatedownload

Olate

1 product

Olatedownload

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Olate Olatedownload	Version 3.4.0

References (10)

http://secunia.com/advisories/22241

Source: cve@mitre.org

http://securityreason.com/securityalert/1680

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/447424/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/20278

Source: cve@mitre.org

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/29294

Source: cve@mitre.org

http://secunia.com/advisories/22241