Family: CGI abuses --> Category: attack
Serendipity SQL Injections Vulnerability Scan
Vulnerability Scan Summary
Checks for SQL injection vulnerability in Serendipity
Detailed Explanation for this Vulnerability Test
The remote web server contains a PHP script that is prone to SQL
The remote version of Serendipity is vulnerable to SQL injection
issues due to a failure of the application to properly sanitize user-
A possible hacker may exploit this flaw to issue arbitrary statements in the
remote database, and therefore bypass authorization or even overwrite
arbitrary files on the remote system
Upgrade to Serendipity 0.7.0beta3 or later.
Medium / CVSS Base Score : 5
Click HERE for more information and discussions on this network vulnerability scan.