|
Family: CGI abuses --> Category: infos
SQL injection in XTreme ASP Photo Gallery Vulnerability Scan
Vulnerability Scan Summary SQL Injection in XTreme ASP Photo Gallery
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains an ASP script that is affected by a SQL
injection flaw.
Description :
The remote host appears to be running XTreme ASP Photo Gallery.
There is a flaw in the version of this software installed on the remote
host that may allow anyone to inject arbitrary SQL commands, which may
in turn be used to gain administrative access on the remote host.
See also :
http://www.securityfocus.com/archive/1/350028
Solution :
Unknown at this time.
Threat Level:
Medium / CVSS Base Score : 5
(AV:R/AC:L/Au:NR/C:P/A:N/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|