IBProArcade Index.php SQL Injection Network Vulnerability

Summary

The remote host is running ibProArcade a web based score board system written in PHP. One of the application's CGIs, index.php, is vulnerable to an SQL injection vulnerability in the 'gameid' parameter. An attacker may exploit this flaw to execute arbitrary SQL statements against the remote database.

Solution

Upgrade to the newest version of this program

Severity

Classification

CVE CVE-2004-1430
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apache Struts2 Showcase Arbitrary Java Method Execution vulnerability
AV Arcade 'ava_code' Cookie Parameter SQL Injection Vulnerability
AproxEngine Multiple Remote Input Validation Vulnerabilities
Advantech WebAccess Multiple Vulnerabilities
Agora CGI Cross Site Scripting

IBProArcade index.php SQL Injection

Take action and discover your vulnerabilities