Related information

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

[Full-disclosure] deviantArt does not check authorization for image download

SYMSA-2007-004: Multiple Vulnerabilities in Xythos Server Products

rwAuction Pro XSS vuln.

QuickTicket multiple sql inj.

From:	r0t <krustevs_(at)_googlemail.com>
Date:	27.06.2007
Subject:	QuickTalk guestbook sql inj.

QuickTalk guestbook sql inj.

###############################################
Vuln. discovered by : r0t
Date: 27 June  2007
vendor:http://www.qt-cute.org/
orginal advisory:
http://pridels-team.blogspot.com/2007/06/quicktalk-guestbook-sql-inj.html
affected versions: tested on QuickTalk guestbook 1.2
other versions also can be affected.
###############################################

QuickTalk guestbook contains a flaw that allows a remote sql injection
attacks. Input passed to the "id" parameter in "qtg_msg_view.php"  isn't
properly sanitised before being used in a SQL query.
This can be exploited to manipulate SQL queries by injecting arbitrary SQL
code.


###############################################
Solution:
Edit the source code to ensure that input is properly sanitised.
###############################################