Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: CGI abuses --> Category: infos

SPIP < 1.8.2-g SQL Injection and XSS Flaws Vulnerability Scan

Vulnerability Scan Summary
Checks for SPIP SQL injection flaw

Detailed Explanation for this Vulnerability Test

Synopsis :

The remote web server has a PHP application that is affected by
multiple flaws.


The remote host is running SPIP, an open-source CMS written in PHP.

The remote version of this software is prone to SQL injection and
cross site scripting attacks. A possible hacker could send specially
crafted URL to modify SQL requests, for example, to obtain the admin
password hash, or execute malicious script code on the remote system.

See also :

Solution :

Upgrade to SPIP version 1.8.2-g or later.

Threat Level:

High / CVSS Base Score : 7.0

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.