Family: CGI abuses --> Category: infos
PHPSurveyor sid SQL Injection Flaw Vulnerability Scan
Vulnerability Scan Summary
Checks for PHPSurveyor sid SQL injection flaw
Detailed Explanation for this Vulnerability Test
The remote web server contains a PHP script that is affected by a SQL
The remote host is running PHPSurveyor, a set of PHP scripts that
interact with MySQL to develop surveys, publish surveys and collect
responses to surveys.
The remote version of this software is prone to a SQL injection flaw.
Using specially crafted requests, a possible hacker can manipulate database
queries on the remote system.
See also :
Upgrade to PHPSurveyor version 0.991 or later.
High / CVSS Base Score : 7.0
Click HERE for more information and discussions on this network vulnerability scan.