by r0t,der4444,cembo,VietMafia

Tuesday, December 06, 2005

Magic List pro 2.5 SQL inj. vuln.

Magic List pro 2.5 SQL inj. vuln.
Vuln. dicovered by : r0t
Date: 6 dec. 2005
vendor:www.cfmagic.com/products/magiclistpro.cfm
affected version:2.5

Product Description:
Magic List Pro is our full-featured opt-in mailing list application, and CFMagic's flagship product. It has all of the features required for medium to large sites that want to generate and maintain mailing lists as well as collect a demographic information database. Have thousands of customer email addresses to manage? Magic List Pro is the answer, now more than ever!


Vuln. Description:
Magic List Pro contains a flaw that allows a remote sql injection attacks.Input passed to the "ListID" parameter in "view_archive.cfm" isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code

example:
/view_archive.cfm?ListID=[SQL]

Solution:
Edit the source code to ensure that input is properly sanitised.

0 Comments:

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew