PHP.ORCA.Forum.php.SQL.Injection
Description
It indicates a attacker attempted an SQL Injection attack against Orca Forum. Orca Form contains a flaw that may allow an attacker to carry out SQL injection attacks. The software fails to properly validate user-supplied input before using it in SQL queries. A successful exploit can allow an attacker to execute SQL queries against the database.
Affected Products
Orca Forum 4.3
Impact
Disclosure or Modification of sensitive data
Recommended Actions
Apply appropriate patch from the vendor or Upgrade to non-vulnerable version if available.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |