|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> CGI abuses >> DUpaypal Pro Multiple SQL Injection Vulnerabilities Vulnerability Assessment Details
|
DUpaypal Pro Multiple SQL Injection Vulnerabilities |
||
Checks for multiple SQL injection vulnerabilities in DUpaypal Pro Detailed Explanation for this Vulnerability Assessment Summary : The remote web server contains an ASP application that is vulnerable to multiple SQL injection attacks. Description : The remote host is running DUpaypal Pro, an ASP-based storefront from DUware for Paypal. The installed version of DUpaypal Pro fails to properly sanitize user- supplied input in several instances before using it in SQL queries. By exploiting these flaws, a possible hacker can affect database queries, possibly disclosing sensitive data and launching attacks against the underlying database. See also : http://echo.or.id/adv/adv19-theday-2005.txt http://archives.neohapsis.com/archives/bugtraq/2005-06/0172.html Solution : Unknown at this time. Network Security Threat Level: High / CVSS Base Score : 7.0 (AV:R/AC:L/Au:NR/C:P/I:P/A:P/B:N) Networks Security ID: 14034 Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2007 Tenable Network Security |
||
Cables, Connectors |
Grandstream GS-HT802 2 Port Analog Telephone Adapter VoIP Phone & Device, Black
$32.00
VoIP IP Phone SIP WAN FV6020 Fanvil Gigabit Office Support IAX IAX2
$35.56
Yealink SIP-T41P PoE Ultra Elegant VoIP Phone
$29.95
Cisco 8841 CP-8841-K9 VoIP Business IP Phone (Charcoal)
$49.00
Cisco CP-7945G VOIP Phone With Stand & Handset Business IP Phone 7945
$3.00
New Cisco 7945G IP VoIP Gigabit GIGE Telephone Phone CP-7945G -
$24.95
Cisco CP-8861-K9 5-Line VoIP Business Phone w/ Stand & Handset
$24.98
Cisco CP-8865-K9 VoIP Video Conference Phone w/ Handset Stand And Camera
$39.99
LOT OF 10 Cisco CP-7841-K9 VoIP 4-Line Business Phone w/ Stand Handset Cord
$69.99
Cisco VG202XM Analog Voice Gateway VoIP -- [NEW/FULL KIT]
$76.00
|
||
No Discussions have been posted on this vulnerability. |