Free Hosting Manager 'id' Parameter SQL Injection Vulnerability Network Vulnerability

Summary

Free Hosting Manager is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. An attacker can exploit this issue to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. Free Hosting Manager 2.0 is vulnerable other versions may also be affected.

References

http://www.fhm-script.com/index.php
http://www.securityfocus.com/bid/56754

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 9.0 AV:N/AC:L/Au:N/C:C/I:P/A:P

Related Vulnerabilities

Apache Struts ClassLoader Manipulation Vulnerabilities
ArticleSetup Multiple Cross-Site Scripting and SQL Injection Vulnerabilities
Apache Struts2 Showcase Arbitrary Java Method Execution vulnerability
Baby Gekko CMS Multiple Vulnerabilities
Apache Tomcat /servlet Cross Site Scripting

Take action and discover your vulnerabilities