phpMyDirectory.1.3.3.SQL.Injection.Vulnerability

description-logoDescription

phpMyDirectory is a website portal solution.
This application is prone to a vulnerability:
SQL injection vulnerability in page.php in phpMyDirectory 1.3.3 allows remote attackers to execute arbitrary SQL commands via the id parameter. (CVE-2012-5288)

affected-products-logoAffected Products

phpMyDirectory 1.3.3

Impact logoImpact

This vulnerability would potentially allow remote attackers to execute arbitrary SQL command and to alter the content of database systems.

recomended-action-logoRecommended Actions

The vendor recommends users to update to the latest version. For more information, please refer to the vendor's website:
http://www.phpmydirectory.com/

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)