|
Family: CGI abuses --> Category: attack
vBulletin last10.php SQL Injection Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of an SQL and Last10
Detailed Explanation for this Vulnerability Test
The remote host is running last10.php, an unofficial test
for vBulletin which allows users to add a revolving ticker
showing the last10 topics of his/her forum.
This set of script may allow a possible hacker to cause an SQL
Injection vulnerability allowing a possible hacker to cause the
program to execute arbitrary SQL statements.
Solution : Upgrade to the latest version of this software or disable it
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|