|
Family: CGI abuses --> Category: attack
SparkleBlog SQL Injection Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of an SQL injection in id parameter
Detailed Explanation for this Vulnerability Test
The remote host is running SparkleBlog, a web blog manager written in PHP.
The remote version of this software contains a flaw in the file 'journal.php'
which may allow a possible hacker to insert arbitrary SQL statements in the remote
database.
Solution : Upgrade to the newest version of this software or disable it.
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|