Title: DWC_Articles Multiple Unspecified SQL Injection Vulnerabilities
Severity: HIGH
Description:
DWC_Articles is a web application that is implemented in ASP.
Multiple SQL injection vulnerabilities are alleged to exist in DWC_Articles. These issues are reported to be present in nearly all of the scripts associated with the software, though the individual who reported these issues has not published any further details about the specific vulnerabilities. The source of the vulnerabilities is that affected scripts do not adequately validate user-supplied input before using it in SQL queries. This may make it possible to manipulate SQL queries to perform unauthorized or unintended actions.
Successful exploitation could allow remote attackers to compromise the software or potentially compromise security properties of the underlying database.
Affected Products:
- Distinct Web Creations DWC_Articles 1.6.0
References:
- Distinct Web Creations: Distinct Web Creations Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
