|
Family: CGI abuses --> Category: infos
PHPMyWebHosting SQL Injection Vulnerability Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of PHPMyWebhosting
Detailed Explanation for this Vulnerability Test
The remote host is running PHPMyWebHosting, a webhosting management interface
written in PHP.
The remote version of this software does not perform a proper validation
of user-supplied input, and is therefore vulnerable to a SQL injection
attack.
A possible hacker may execute arbitrary SQL statements against the remote database
by sending a malformed username contain SQL escape characters when logging
into the remote interface in 'login.php'.
Solution : None at this time.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|