Sql-injections In Koobi-cms

Full Version: Sql-injections In Koobi-cms

GovernmentSecurity.org > General GSO > Exploit & Vulnerability Mailing List Archives

qcred11

Apr 27 2005, 07:57 PM

QUOTE

The program: koobi-cms
Homepage: http://www.dream4.de/
Vulnerable Versions: 4.2.3
Has found: CENSORED [SVT] 28.04.05

The description
---------------
Vulnerability has been found in parameter page. In koobi-cms it
Refers to - p. Data transferred to this parameter not
Are filtered. Owing to it it is possible to make SQL-injections.
As at substitution of a symbol ', probably to define
House dir a server.
Still the mistake exists in parameter q. It is used for
Search on a site.

Examples
--------
http://127.0.0.1/index.php?p='[SQL code]
http://127.0.0.1/index.php?area=1&p='[SQL code]
http://127.0.0.1/index.php?q='[SQL code]

The conclusion
--------------
Vulnerability is found out in version 4.2.3, on other versions
Research did not spend. Probably they too are vulnerable.
-------------------------------------------------------------

CENSORED Search Vulnerabilities Team

Source: http://seclists.org/lists/bugtraq/2005/Apr/0461.html

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.