Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: CGI abuses --> Category: attack

PhpGroupWare multiple module SQL injection vulnerabilities Vulnerability Scan

Vulnerability Scan Summary
Checks for PhpGroupWare version

Detailed Explanation for this Vulnerability Test

The remote host seems to be running PhpGroupWare, is a multi-user groupware
suite written in PHP.

It has been reported that this version may be prone to multiple SQL injection
vulnerabilities in the 'calendar' and 'infolog' modules.

The problems exist due to insufficient sanitization of user-supplied data.

A remote attacker may exploit these issues to influence SQL query logic to disclose
sensitive information that could be used to gain unauthorized access.

Solution : Update to version or newer

See also:

Threat Level: Medium

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.