by r0t,der4444,cembo,VietMafia

Saturday, November 26, 2005

Entergal MX V2.0 SQL vuln.

Entergal MX V2.0 SQL vuln.
Vuln. dicovered by : r0t
Date: 26 nov. 2005
Vendor:www.entergal.com
affected version: v2.0 and prior

Product description:
Entergal Directory MX for PHP is the ultimate solution for making money from your own directory engine. This package gives you total flexibility over the type of directory you want to run - from a Google type directory to business yellow pages to computer games topsites. Our system uses regular resets along with the World's only rolling fortnight system which guarantees the most reliable results possible! There are also many built in cheat protection features and a fully featured admin panel.

Vuln. Description:
Input passed to the "action" and "idcat" parameters isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.


example:
/?action=showcat&idcat=[SQL]
/?action=[SQL]


Solution:
Edit the source code to ensure that input is properly sanitised.

0 Comments:

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew