Intrusion Prevention



This indicates detection of an attempt to exploit a SQL Injection vulnerability in Forum Livre.
The vulnerability may allow a remote attacker to execute arbitrary SQL commands in the back-end database, via a specially crafted HTTP request to the "info-user.asp" script, with injected SQL statements in the "user" parameter.

Affected Products

Forum Livre version 1.0


System Compromise: Data manipulation.

Recommended Actions

Currently we are not aware of any vendor supplied patches for this issue.

CVE References