header-logo
Suggest Exploit
vendor:
Plague News System
by:
SecurityFocus
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Plague News System
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2005

Plague News System SQL Injection Vulnerability

Plague News System is prone to an SQL injection vulnerability. As a result, the attacker may modify the structure and logic of an SQL query that is made by the application. Other attacks may be possible depending on the capabilities of the underlying database and the nature of the affected query.

Mitigation:

Input validation should be used to prevent SQL injection attacks.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/14136/info

Plague News System is prone to an SQL injection vulnerability. As a result, the attacker may modify the structure and logic of an SQL query that is made by the application.

Other attacks may be possible depending on the capabilities of the underlying database and the nature of the affected query. 

http://www.example.com/index.php?cid=[SQL Command]

Navigation

Suggest Exploit

Services By CQR