Computer Security

Security Advisory: OvBB SQL vulnerabilities.
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Web applications security vulnerabilities (PHP, ASP, CGI, Perl, etc)

  XSS in PBLang 4.65 Profile.php/UCP.php

  [SA17706] PHP-Post Cross-Site Scripting and Script Insertion Vulnerabilities

  [SA17741] blogBuddies Cross-Site Scripting Vulnerabilities

  [SA17736] SmartPPC Pro "username" Cross-Site Scripting Vulnerability

From:r0t <krustevs_(at)_googlemail.com>
Date:24.11.2005
Subject:OvBB SQL vulnerabilities.

OvBB SQL vulnerabilities.

Vuln. dicovered by : r0t
Date: 24 nov. 2005
Orginal advisory:http://pridels.blogspot.com/2005/11/ovbb-sql-vulnerabilities.html
Vendor:http://www.ovbb.org/
affected version: V0.08a and prior


Vuln. description:
Input passed to the "threadid" parameter in "thread.php" isn't
properly sanitised before being used in a SQL query.
And input passed to the "userid" parameter in "profile.php" isn't
properly sanitised before being used in a SQL query.
This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

examples:
http://host/forums/thread.php?threadid=[SQL]
http://host/forums/profile.php?userid=[SQL]

 Solution:
Edit the source code to ensure that input is properly sanitised.
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru