Nessus Plugin #12022

Plugin Index

Note: This file has been created from a downloaded version of the Nessus Plugins from http://www.nessus.org/. Therefore, the information here can be outdated.

Multiple phpShop Vulnerabilities

Family:
CGI abuses
Category:
infos
Copyright:
This script is Copyright (C) 2004 Noam Rathaus
Summary:
Detect phpShop SQL Injection
Version:
$Revision: 1.4 $
Cve_id:
-
Bugtraq_id:
9437
Xrefs:
-
Description:

The remote host is running phpShop, a PHP-based e-commerce application and
PHP development framework.

Multiple vulnerabilities have been discovered in this product, which may
allow a remote attacker to send arbitrary SQL commands to the remote database,
or to insert malicious HTML and/or JavaScript into existing pages.

Solution : Upgrade to the latest version of this CGI suite
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.