Family: CGI abuses --> Category: infos
paFileDB SQL injection Vulnerability Scan
Vulnerability Scan Summary
Determine if pafiledb is vulnerable to a SQL injection
Detailed Explanation for this Vulnerability Test
The remote web server contains a PHP script that is affected by
several SQL injection issues.
The remote installation of paFileDB is vulnerable to SQL injection
attacks because of its failure to sanitize input to the 'id' and
'rating' parameters to the 'pafiledb.php' script. A possible hacker may use
this flaw to control your database.
See also :
Unknown at this time.
Medium / CVSS Base Score : 5
Click HERE for more information and discussions on this network vulnerability scan.