PHP.ORCA.Forum.php.SQL.Injection

description-logoDescription

It indicates a attacker attempted an SQL Injection attack against Orca Forum. Orca Form contains a flaw that may allow an attacker to carry out SQL injection attacks. The software fails to properly validate user-supplied input before using it in SQL queries. A successful exploit can allow an attacker to execute SQL queries against the database.

affected-products-logoAffected Products

Orca Forum 4.3

Impact logoImpact

Disclosure or Modification of sensitive data

recomended-action-logoRecommended Actions

Apply appropriate patch from the vendor or Upgrade to non-vulnerable version if available.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)