Release DateNov 03, 2011 |
Severityhigh |
ImpactSystem Compromise: Arbitrary SQL command execution. |
DescriptionThis indicates an attempt to exploit a SQL Injection vulnerability in SaphpLesson.The vulnerability is a result of the application's failure to check user input before using it in an SQL query. It may allow a remote attacker to send a crafted query to execute SQL commands on a vulnerable server. |
Affected ProductsArabless.com SaphpLesson 2.0 |
Recommended ActionsCurrently, we are not aware of any vendor supplied patches for this issue. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2006-2835 |
