Sandbox Multiple Remote Vulnerabilities Network Vulnerability

Summary

Sandbox is prone to multiple remote vulnerabilities, including multiple SQL-injection vulnerabilities, a local file-include vulnerability, and multiple arbitrary-file-upload vulnerabilities. Exploiting these issues could allow an attacker to upload and execute arbitrary code within the context of the webserver, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. Other attacks are also possible. Sandbox 2.0.3 is vulnerable prior versions may also be affected.

Solution

Updates are available please see the references for more information.

References

http://www.iguanadons.net/downloads/Sandbox-204-56.html
http://www.iguanadons.net/sandbox
https://www.securityfocus.com/bid/41420

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Adobe ColdFusion Multiple Vulnerabilities-02 May-2014
Agora CGI Cross Site Scripting
Alcatel-Lucent OmniPCX Enterprise Remote Command Execution Vulnerability
'research_display.php' SQL Injection Vulnerability
Atutor AContent Multiple SQL Injection and XSS Vulnerabilities

Take action and discover your vulnerabilities