Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Snitz Forums < 3.4.03 register.asp Email Parameter SQL Injection (deprecated)

High

Synopsis

The remote web server contains a script which is vulnerable to a SQL injection attack.

Description

The remote host is using Snitz Forum 2000. This set of CGI is vulnerable to a SQL injection issue which may allow an attacker to execute arbitrary commands on this host.

Solution

Upgrade to version 3.4.03 or higher.