Summary
The remote host is running Sendcard, a multi-database e-card program written in PHP.
The version of Sendcard installed on the remote host is prone to a SQL injection attack due to its failure to sanitize user-supplied input to the 'id' field in the 'sendcard.php' script.
Solution
Unknown at this time
Severity
Classification
-
CVE CVE-2005-2404 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities