phpMyDirectory.1.3.3.SQL.Injection.Vulnerability
Description
phpMyDirectory is a website portal solution.
This application is prone to a vulnerability:
SQL injection vulnerability in page.php in phpMyDirectory 1.3.3 allows remote attackers to execute arbitrary SQL commands via the id parameter. (CVE-2012-5288)
Affected Products
phpMyDirectory 1.3.3
Impact
This vulnerability would potentially allow remote attackers to execute arbitrary SQL command and to alter the content of database systems.
Recommended Actions
The vendor recommends users to update to the latest version. For more information, please refer to the vendor's website:
http://www.phpmydirectory.com/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |