CVE-2006-2042

critical

Description

Adobe Dreamweaver 8 before 8.0.2 and MX 2004 can generate code that allows SQL injection attacks in the (1) ColdFusion, (2) PHP mySQL, (3) ASP, (4) ASP.NET, and (5) JSP server models.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/26339

http://www.vupen.com/english/advisories/2006/1753

http://www.securityfocus.com/bid/17928

http://www.osvdb.org/25361

http://www.adobe.com/support/security/bulletins/apsb06-07.html

http://securitytracker.com/id?1016050

http://secunia.com/advisories/20054

http://archives.neohapsis.com/archives/bugtraq/2006-05/0194.html

Details

Source: Mitre, NVD

Published: 2006-05-09

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.02483

Detections

Analytics