Summary
The remote host is running Advanced Guestbook - a guestbook written in PHP.
The remote version of this software contains an input validation flaw leading to a SQL injection vulnerability. An attacker may exploit this flaw to execute arbirtrary commands against the remote database.
Solution
Upgrade to the newest version of this software
Severity
Classification
-
CVE CVE-2005-1548 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- ActivDesk Multiple Cross Site Scripting and SQL Injection Vulnerabilities
- Apache Tomcat Windows Installer Privilege Escalation Vulnerability
- Artmedic Kleinanzeigen File Inclusion Vulnerability
- AlstraSoft AskMe Pro 'forum_answer.php' and 'profile.php' Multiple SQL Injection Vulnerabilities
- Apache Tomcat /servlet Cross Site Scripting