Summary
Aardvark Topsites is a popular free PHP Topsites script.
Multiple vulnerabilities have been found in the product allowing remote attacker to disclosure sensitive information about the server and inject malicious SQL statements.
Solution
Upgrade to version 4.1.1 or newer.
Severity
Classification
-
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Active Perl CGI.pm 'Set-Cookie' and 'P3P' HTTP Header Injection Vulnerability (Win)
- Apple Safari Multiple Memory Corruption Vulnerabilities-02 Apr14 (Mac OS X)
- Adobe Flash Player/Air Multiple Vulnerabilities -feb10 (Win)
- Apache /server-info accessible
- Adobe Reader Plugin Signature Bypass Vulnerability (Linux)