Intrusion Prevention

PHP.BabeLogger.SQL.Injection

Description

It indicates a possible exploit of SQL injection vulnerability in Babe Logger that may allow remote attackers to execute arbitrary SQL commands via the (1) gal parameter to index.php or (2) id parameter to comments.php.

Affected Products

Babe Logger Babe Logger V2

Impact

Data compromise.

Recommended Actions

Apply appropriate patch from the vendor if available.

CVE References

CVE-2005-3920