icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

SparkleBlog journal.php SQL Injection

High

Synopsis

The remote web server contains a script that is vulnerable to a SQL injection attack.

Description

The remote host is running SparkleBlog, a web blog. An attacker exploiting this flaw would only need to be able to craft a web request against the web server using the 'journal.php' script.

Solution

No solution is known at this time.