PHP-Jokesite SQL Injection Vulnerability - Exabytes Security Portal

Categories

Applications (244)
Blogs (7)
Content Management (158)
Customer Relationship (4)
Discussion Boards (35)
E-Commerce (15)
General Purpose Directories (2)
Image Galleries (21)
Mailing Lists (1)
Tips (3)
Vulnerabilities (357)
Access Bypass (53)
Cross Site Scripting (134)
Denial Of Service (2)
File Inclusion (53)
Information Disclosure (15)
Privilege Escalation (2)
Remote Command Execution (17)
Session Hijacking (2)
SQL Injection (137)

PHP-Jokesite SQL Injection Vulnerability

Published by TL Guan June 23rd, 2008 in SQL Injection.

Application: PHP-Jokesite
Affected Version: version 2.0 and other versions.
Vendor’s URL: http://www.scriptdemo.com/details/phpjokesite2/
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized.

Search

Subscribe

Entries RSS

Latest

Archives