Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:14510
HistoryOct 02, 2006 - 12:00 a.m.

OlateDownload 3.4.0 Multiple Vulnerabilities

2006-10-0200:00:00
vulners.com
8
JSON

::OlateDownload 3.4.0 Multiple Vulnerabilities ::

Software : OlateDownload
Website : www.olate.co.uk
Bug Discover : Hessam-x / www.hessamx.net

I. Cross Site Scripting Vulnerability

Parameter "description_small" are not properly sanitized in "userupload.php".
This can be used to post arbitrary HTML or web script code.

II. Multiple SQL Injection Vulnerabilities

Parameter "page" in "detailes.php" and "query" in "search.php"
is not properly sanitized before being used in SQL query.
This can be used make any SQL query by injecting arbitrary SQL code.
Attacker can be execute this url :
/details.php?page=%BF%27%22%28&file=1
/search.php?query=%BF%27%22%28

================================================
Hessam Salehi .Hessamx[@]Hessamx.net

JSON