SQL Injection Vulnerability in PHPjournaler
- SQL Injection Vulnerability in PHPjournaler
- Last Update
- 0 n/a
- Risk Level
- SQL Injection
- Vulnerable Software
- PHPjournaler (http://phpjournaler.sourceforge.net/)
- Not available
- Discovered by
- Aliaksandr Hartsuyeu (eVuln.com)
SQL Injection found in PHPjournaler (http://phpjournaler.sourceforge.net/) script.
Vulnerable scripts: index.php
Variable $readold isn't properly sanitized before being used in a SQL query. This can be used to make any SQL query by injecting arbitrary SQL code.
Administrator's password is threatened.
Show Administrator's password:
Solution for "SQL Injection Vulnerability in PHPjournaler" is not available. Check vendor's website for updates.
Order Source Code Review made by eVuln
Protect against hacking by source code audit of your website made by Aliaksandr Hartsuyeu.The work will be done by specialists in website security.