Name:
GameSiteScript.Index.PHP.SQL.Injection
Released Date:
Aug 9 2007
Severity:
high
CVE:
2007-3631
Bugtraq:
24807
FortiGuard Center
> Vulnerability Encyclopedia
In-Depth Analysis
Description
This indicates a vulnerability in GameSiteScript. This vulnerability is caused by an input validation error in the "index.php" script. It allows remote attackers to conduct SQL injection attacks via SQL queries in the "params" parameter.
Impact
SQL injection.
Affected Products
GameSiteScript version 3.1 and prior.
Aliases
GameSiteScript.Index.PHP.SQL.Injection
References
http://www.securityfocus.com/bid/24807
http://www.frsirt.com/english/advisories/2007/2460
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2007-3631
Recommended Actions
Currently we are not aware of any official fix for this issue.
SITE MAP
|
LEGAL NOTICES
© 2003 FORTINET INC. ALL RIGHTS RESERVED
