Synopsis
The remote web server contains a script which is vulnerable to a SQL injection attack.
Description
The remote host is using mod_survey, a perl add-on to manage online surveys. There is a flaw in the remote installation of mod_survey which makes it vulnerable to SQL injection attacks when a database backend is being used. An attacker may use this flaw to gain control of your database.
Solution
Upgrade to mod_survey 3.0.14e or 3.0.15pre6 or higher.
Plugin Details
Nessus ID: 11609
Reference Information
BID: 7192
