VYPR
Unrated severityNVD Advisory· Published Jun 28, 2006· Updated Jun 16, 2026

CVE-2006-3275

CVE-2006-3275

Description

SQL injection vulnerability in profile.php in YaBB SE 1.5.5 and earlier allows remote attackers to execute SQL commands via a double-encoded user parameter in a viewprofile action.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • Yabb/Yabb4 versions
    cpe:2.3:a:yabb:yabb:1.5.1:*:second_edition:*:*:*:*:*+ 3 more
    • cpe:2.3:a:yabb:yabb:1.5.1:*:second_edition:*:*:*:*:*
    • cpe:2.3:a:yabb:yabb:1.5.2:*:second_edition:*:*:*:*:*
    • cpe:2.3:a:yabb:yabb:1.5.4:*:second_edition:*:*:*:*:*
    • cpe:2.3:a:yabb:yabb:*:*:second_edition:*:*:*:*:*range: <=1.5.5
  • Yabb/YabbSEllm-fuzzy
    Range: <=1.5.5

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.