|
Family: CGI abuses --> Category: infos
OpenBB XSS and SQL injection flaws Vulnerability Scan
Vulnerability Scan Summary Detects openBB version
Detailed Explanation for this Vulnerability Test
The remote host seems to be running OpenBB, a forum management system written
in PHP.
The remote version of this software is vulnerable to cross-site scripting
attacks, and SQL injection flaws.
Using a specially crafted URL, a possible hacker may execute arbitrary commands against
the remote SQL database or use the remote server to set up a cross site scripting
attack.
Solution: Upgrade to version 1.0.9 of this software or newer
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|