|
Family: CGI abuses --> Category: infos
DUware multiple vulnerabilities Vulnerability Scan
Vulnerability Scan Summary Acertains if the remote ASP scripts are vulnerable to SQL injection
Detailed Explanation for this Vulnerability Test
The remote host is running a product published by DUware - either
DUclassmate, DUclassified or DUforum.
There is a flaw in the remote version of this software which may allow
a possible hacker to execute arbitrary SQL statements on the remote host by
supplying malformed values to the arguments of /admin/, messages.asp or
messagesDetails.asp.
Solution : Upgrade the newest version of this software.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|