Family: CGI abuses --> Category: infos
Interchange < 5.0.2 / 5.2.1 Multiple Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
Checks for multiple vulnerabilities in Interchange < 5.0.2 / 5.2.1
Detailed Explanation for this Vulnerability Test
The remote web server uses an application server that may be prone to
SQL injection or cross-site scripting attacks.
The remote host appears to be running Interchange, an open-source
application server that handles state management, authentication,
session maintenance, click trails, filtering, URL encodings, and
According to its banner, the installed version of Interchange fails to
sanitize input passed through to the 'forum/submit.html' page, which
may lead to either SQL injection or cross-site scripting attacks.
See also :
Upgrade to Interchange 5.0.2 / 5.2.1 or later.
Medium / CVSS Base Score : 5
Click HERE for more information and discussions on this network vulnerability scan.