Mac OS X : OS X Server < 2.2.3 Wiki SQL Injection
High Nessus Plugin ID 77757
SynopsisThe remote host is missing a security update for OS X Server.
DescriptionThe remote Mac OS X 10.8 host has a version of OS X Server installe that is prior to 2.2.3. It is, therefore, affected by a SQL injection vulnerability in the Wiki Server component due to improper validation of user-supplied input. A remote attacker can exploit this to inject or manipulate SQL queries on the back-end database.
SolutionUpgrade to Mac OS X Server version 2.2.3 or later.