by r0t,der4444,cembo,VietMafia

Monday, December 05, 2005

Web4Future eDating Professional v5 sql vuln.

Web4Future eDating Professional v5 sql vuln.
Vuln. dicovered by : r0t
Date: 5 dec. 2005
vendor:http://www.web4future.com/products.php?p=edating
affected version: v5 and prior

Product Description:
eDating Professional is an online dating software that allows you to start your own dating website.

Vuln. Description:
Input passed to the "s","pg","sortb" parameter in "index.php" and "cid" parameter in "gift.php","fq.php" and "cat" parameter in "articles.php" isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

examples:
/index.php?afis=browse&s=[SQL]
/index.php?afis=profil&pg=[SQL]
/index.php?afis=SelCupidonNoLog&sortb=[SQL]
/gift.php?A=ViewGifts&cid=[SQL]
/articles.php?cat=1[SQL]
/articles.php?A=ViewArticles&cat=1[SQL]
/fq.php?A=ViewFQ&cid=1[SQL]

Solution:
Edit the source code to ensure that input is properly sanitised.

0 Comments:

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew