Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

MercuryBoard < 1.1.2 Multiple Vulnerabilities

High

Synopsis

The remote web server contains a script that is vulnerable to a SQL injection attack.

Description

The remote host is running MercuryBoard, a web-based message board. This version of MercuryBoard is vulnerable to multiple vulnerabilities that include: cross-site scripting (XSS), SQL Injection, and path disclosure. An attacker exploiting these flaws would be able to elevate privileges and/or execute code.

Solution

Upgrade to version 1.1.2 or higher.