Summary
The remote host is using phpBugTracker, a PHP based bug tracking engine.
There is a bug in the remote version of this software which makes it vulnerable to an SQL injection vulnerability. An attacker may exploit this flaw to execute arbitrary SQL statements against the remote database.
Solution
Upgrade to the latest version of this software
Severity
Classification
-
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Apache Solr XML External Entity(XXE) Vulnerability-02 Jan-14
- A-A-S Application Access Server Multiple Vulnerabilities
- Atlassian JIRA FishEye and Crucible Plugins XML Parsing Unspecified Security Vulnerability
- ASAS Server End User Self Service (EUSS) SQL Injection Vulnerability
- AWStats configdir parameter arbitrary cmd exec