Family: CGI abuses --> Category: attack
Invision Power Board Post SQL Injection Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Detect Invision Power Board Post SQL Injection
Detailed Explanation for this Vulnerability Test
The remote web server contains a PHP application that is vulnerable to
a SQL injection attack.
The version of Invision Power Board on the remote host suffers from a
flaw in 'sources/post.php' that allows injection of SQL commands into
the remote SQL database. A possible hacker may use this flaw to gain
control of the remote database and possibly to overwrite files on the
See also :
Replace the 'sources/post.php' file with the one referenced in the
vendor advisory above.
Medium / CVSS Base Score : 5
Click HERE for more information and discussions on this network vulnerability scan.