Intrusion PreventionSpoonLabs.Vivvo.Article.Management.PdfVersion.PHP.SQL.Injection
Description
A SQL injection vulnerability in pdf_version.php in SpoonLabs Vivvo Article Management CMS (aka phpWordPress) 3.2 and earlier, allows remote attackers to execute arbitrary SQL commands via the id parameter.
Affected Products
SpoonLabs Vivvo Article Management 3.2
Impact
Execute arbitrary SQL commands.
Recommended Actions
Apply patch :
http://www.vivvo.net/forums/showthread.php?t=310
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Status | Detail |
|---|---|---|---|
| 2018-09-27 | 13.459 |
Removed
|
| ID | 14091 |
| Created | Feb 12, 2007 |
| Updated | Apr 23, 2014 |
| CVE ID | |
| Risk |
|
| Exploit Prediction Score | 1.81% |
| Default Action | pass |
| Active | |
| Affected OS | Windows, Linux, BSD, Solaris, MacOS |
| Affected App | PHP_app |
| Profile Type | SQL Injection |