Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
PHP FILTER_UNSAFE_RAW SQL Injection Vulnerability
Information
Severity
Severity
High
Family
Family
Web application abuses
CVSSv2 Base
CVSSv2 Base
7.5
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Solution Type
Solution Type
Vendor Patch
Created
Created
15 years ago
Modified
Modified
5 years ago
Summary
The host is running PHP and is prone to SQL Injection vulnerability.
Insight
Insight
The flaw is due to improper field change in FILTER_UNSAFE_RAW. These can be exploited when magic_quotes_gpc settings is disabled.
Affected Software
Affected Software
PHP version 5.2.7 on all running platform.
Solution
Solution
Update to version 5.2.8 or later.