Family: CGI abuses --> Category: attack
ADODB sql Parameter SQL Injection Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks for sql parameter SQL injection vulnerability in ADODB
Detailed Explanation for this Vulnerability Test
The remote web server has a PHP script that is affected by a SQL
The remote host is running ADODB, a database abstraction library for
The installed version of ADODB includes a test script named
'server.php' that fails to sanitize user input to the 'sql' parameter
before using it in database queries. A possible hacker can exploit this
issue to launch SQL injection attacks against the underlying database.
See also :
Remove the test script or set a root password for MySQL.
High / CVSS Base Score : 7.0
Click HERE for more information and discussions on this network vulnerability scan.