Family: CGI abuses --> Category: attack
Woltlab Burning Board SQL injection flaw Vulnerability Scan
Vulnerability Scan Summary
Checks SQL injection flaw in Woltlab Burning Board Database module
Detailed Explanation for this Vulnerability Test
The remote web server contains a PHP script that is susceptible to SQL
The remote version of Burning Board includes an optional module, the
Database module, that fails to properly sanitize the 'fileid'
parameter of the 'info_db.php' script, which can be exploited to
launch SQL injection attacks against the affected host.
Unknown at this time.
High / CVSS Base Score : 7.0
Click HERE for more information and discussions on this network vulnerability scan.