Family: CGI abuses : XSS --> Category: infos
Ecommerce Corp. Online Store Kit More.php Injection Vulnerability Vulnerability Scan
Vulnerability Scan Summary
More.php MoSQL Injection
Detailed Explanation for this Vulnerability Test
The remote host is running Ecommerce Corportation Online Store Kit, a web
based e-commerce CGI suite.
A vulnerability has been discovered in the more.php file
that allows unauthorized users to inject SQL commands or to perform
cross-site scripting attackes.
A possible hacker may use this flaw to gain the control of the remote database
Solution : Upgrade to the latest version of this software.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.