Family: CGI abuses --> Category: attack
WordPress Cross-Site Scripting / SQL Injection Vulnerability Scan
Vulnerability Scan Summary
Searches for the existence of WordPress
Detailed Explanation for this Vulnerability Test
The remote web server contains multiple PHP scripts that are prone to
SQL injection and cross-site scripting attacks.
According to its banner, the remote version of WordPress is vulnerable
to a cross-site scripting attack which may allow a possible hacker to use the
remote server to steal the cookies of third party users on the remote
In addition, the remote version of this software is vulnerable to a SQL
injection attack which may allow a possible hacker to manipulate database
See also :
Upgrade to WordPress version 1.5.1 or greater.
Medium / CVSS Base Score : 5
Click HERE for more information and discussions on this network vulnerability scan.