Summary
PHP Coupon Script is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input.
Attackers may exploit this issue to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
PHP Coupon Script 6.0 is vulnerable
other versions may also be
affected.
References
Updated on 2015-03-25
Severity
Classification
-
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- appRain CMF SQL Injection And Cross Site Scripting Vulnerabilities
- ArticleFR CMS Multiple Vulnerabilities - Jan15
- ActivDesk Multiple Cross Site Scripting and SQL Injection Vulnerabilities
- AlienVault Open Source SIEM (OSSIM) 'timestamp' Parameter Directory Traversal Vulnerability
- Advanced Guestbook Index.PHP SQL Injection Vulnerability