by r0t,der4444,cembo,VietMafia

Monday, November 28, 2005

AllWeb search SQL inj. vuln.

AllWeb search SQL inj. vuln.
Vuln. dicovered by : r0t
Date: 28 nov. 2005
Vendor:http://www.scripts-templates.com
affected version: 3.0 and prior

Product Description:
Want to make money from your site traffic? AllWeb search allows you to search in web, images, news, video, audio and whopping categories. You can put xml based ads on the top, right side and bottom of the search results page. In the admin panel you can see monthly search statistic for each keywords sequence. Also you can change your ads display style, ads count and add new ads server.

Vuln. description:
Input passed to the "search" parameter in "index.php" isn't properly sanitised before being used in a SQL query.This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

example:
/index.php?search=[SQL]&type=web

Solution:
Edit the source code to ensure that input is properly sanitised.

0 Comments:

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew