by r0t,der4444,cembo,VietMafia

Tuesday, December 06, 2005

LocazoList Classifieds v1.03c Vuln.

LocazoList Classifieds v1.03c Vuln.
Vuln. dicovered by : r0t
Date: 6 dec. 2005
vendor:http://locazo.net:81/applications/
affected version:v1.03c and prior

Product Description:
LocazoList a Free, text based classifieds system that tries to emulate the popular classifieds organization Craigslist. Easy to use and self maintaining, LocazoList is a great application for small sites that need a fast and simple classifieds system. The system was made completely in ASP and Access (Right now there is No MySQL support).

Vuln. Description:
Input passed to the "q" parameter in "searchdb.asp" isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code and also it can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

example:
/searchdb.asp?q=[CODE]&mode=AND&Submit=Search

Solution:
Edit the source code to ensure that input is properly sanitised.

0 Comments:

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew