National Cyber-Alert System
Vulnerability Summary: ARC-025
Orirignal release date: 2007-02-13
Source: Advanced Research Corporation ®

Overview

    The identifed URL path is vulnerable to SQL injection which can lead to arbitrary command execution on the backend SQL server.

Impact

    CVSS Severity: 9.0 (High)
    Range:
    Authentication: remote
    Impact Type:

Reference to Advisories, Solutions, and Tools

Vulnerable Software and Vendor

    HTTP

Technical Details