EZDatabase多个输入验证漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1109491 漏洞类型 SQL注入
发布时间 2005-12-16 更新时间 2006-01-10
CVE编号 CVE-2005-4303 CNNVD-ID CNNVD-200512-337
漏洞平台 PHP CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/26854
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200512-337
|漏洞详情
EZDatabase是用PHP和MySQL编写的在线数据库程序。EZDatabase中存在多个输入验证错误,如下:1.没有正确验证对"p"参数的输入,可能导致包含本地资源的任意文件;2.没有正确验证对"db_id"参数的输入,可能导致通过注入任意SQL代码来操控SQL查询;3.没有正确验证对"cat_id"参数的输入,可能导致泄漏完整的安装路径。
|漏洞EXP
source: http://www.securityfocus.com/bid/15908/info
 
ezDatabase is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
 
ezDatabase is prone to an SQL injection vulnerability and a local file include vulnerability. Successful exploitation of these issues may result in the disclosure of sensitive information, a compromise of the database or the execution of arbitrary local server-side script code. This may facilitate a compromise of the underlying system; other attacks are also possible.
 
This issue affects version 2.1.2; other versions may also be affected.

http://www.example.com/index.php?p=getcat&db_id=[SQL]
|参考资料

来源:BID
名称:15908
链接:http://www.securityfocus.com/bid/15908
来源:OSVDB
名称:21797
链接:http://www.osvdb.org/21797
来源:MISC
链接:http://pridels0.blogspot.com/2005/12/ezdatabase-vuln.html