Summary
The remote host is running Invision Power Board - a CGI suite designed to set up a bulletin board system on the remote web server.
A vulnerability has been discovered in the sources/calendar.php file that allows unauthorized users to inject SQL commands.
An attacker may use this flaw to gain the control of the remote database
Solution
Upgrade to the latest version of this software.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2004-1785 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities