Family: CGI abuses : XSS --> Category: attack
VP-ASP SQL Injection Vulnerability Scan
Vulnerability Scan Summary
Determine if ProductCart is vulnerable to a sql injection attack
Detailed Explanation for this Vulnerability Test
The remote host is using the VP-ASP software suite.
This set of CGIs is vulnerable to a SQL injection bug which may allow
a possible hacker to take the control of the server as an administrator.
From there, he can obtain the list of customers, steal their credit
card information and more.
In addition to this, this software is vulnerable to various
file disclosure and cross site scripting flaws.
Solution : Upgrade to the latest version of VP-ASP.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.