Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Bandersnatch <= 0.4 Multiple Vulnerabilities



The remote host is vulnerable to multiple attack vectors.


The remote server is running Bandersnatch, an open-source PHP application that generates Jabber usage statistics. This version of Bandersnatch is vulnerable to a flaw in the way that it parses multiple user-supplied variables. An attacker exploiting these flaws can inject script and SQL code that would be executed on the server with the permissions of the web server.


Upgrade or patch according to vendor recommendations.