|
|
Family: CGI abuses --> Category: attack
b2Evolution title SQL Injection Vulnerability Scan
Vulnerability Scan Summary
Searches for the existence of an SQL injection in title parameter
Detailed Explanation for this Vulnerability Test
The remote host is running b2evolution, a blog engine written in PHP.
There is an SQL injection vulnerability in the remote version of this software
which may allow a possible hacker to execute arbitrary SQL statements against the
remote database by providing a malformed value to the 'title' argument
of index.php.
Solution : None at this time
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
