|
Family: CGI abuses --> Category: infos
Multiple SQL Injection Vulnerabilities in iWebNegar Vulnerability Scan
Vulnerability Scan Summary SQL Injection
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains a PHP application that is subject to
multiple SQL injection vulnerabilities.
Description :
The remote host appears to be running iWebNegar, a web log application
written in PHP.
There is a flaw in the remote software that may allow anyone to inject
arbitrary SQL commands and in turn gain administrative access to the
affected application.
See also :
http://archives.neohapsis.com/archives/bugtraq/2004-12/0175.html
Solution :
Unknown at this time.
Threat Level:
High / CVSS Base Score : 7
(AV:R/AC:L/Au:NR/C:P/A:P/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|