by r0t,der4444,cembo,VietMafia

Sunday, April 30, 2006

MaxTrade sql inj.

###############################################
Vuln. discovered by : r0t
Date: 30 april 2006
vendorlink:http://avalonbg.com/en_soft.html
affected versions:1.0.1 and prior
###############################################

Vuln. Description:

MaxTrade contains a flaw that allows a remote sql injection attacks.Input passed to the "categori" and "stranica" parameter in "pocategories.php" isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.


examples:

/pocategories.php?stranica=categories&categori=[SQL]
/pocategories.php?stranica=[SQL]

###############################################
Solution:
Edit the source code to ensure that input is properly sanitised.
###############################################
More information @ unsecured-systems.com/forum/

1 Comments:

Anonymous Anonymous told...

SOLUTION:
Sanitised 3 files. For can not be exploited to manipulate SQL queries by
injecting arbitrary SQL code. Upgrade to "MaxTrade" v1.0.3

http://www.avalonbg.com/en_soft.html

STATUS: Fixed

2:50 PM

 

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew