Family: CGI abuses --> Category: infos
wpoison (nasl version) Vulnerability Scan
Vulnerability Scan Summary
Some common SQL injection techniques
Detailed Explanation for this Vulnerability Test
This script attempts to use SQL injection techniques on CGI scripts
See also :
http://www.securiteam.com/securityreviews/5DP0N1P76E.html (basic SQL injection)
http://www.securitydocs.com/library/2651 (Blind SQL injection)
Solution : Modify the relevant CGIs so that they properly escape arguments.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.