|
Family: CGI abuses --> Category: attack
Sendcard SQL injection Vulnerability Scan
Vulnerability Scan Summary Checks for SQL injection in the id field in sendcard.php
Detailed Explanation for this Vulnerability Test
The remote host is running Sendcard, a multi-database e-card program written
in PHP.
The version of Sendcard installed on the remote host is prone to a SQL
injection attack due to its failure to sanitize user-supplied input to
the 'id' field in the 'sendcard.php' script.
Solution : Unknown at this time
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|