Forum.Livre.infouser.asp.Remote.SQL.Injection

description-logoDescription

This indicates detection of an attempt to exploit a SQL Injection vulnerability in Forum Livre.
The vulnerability may allow a remote attacker to execute arbitrary SQL commands in the back-end database, via a specially crafted HTTP request to the "info-user.asp" script, with injected SQL statements in the "user" parameter.

affected-products-logoAffected Products

Forum Livre version 1.0

Impact logoImpact

System Compromise: Data manipulation.

recomended-action-logoRecommended Actions

Currently we are not aware of any vendor supplied patches for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)