Venom Board Post.PHP3多个SQL注入漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1109607 漏洞类型 SQL注入
发布时间 2006-01-09 更新时间 2006-05-05
CVE编号 CVE-2006-0160 CNNVD-ID CNNVD-200601-102
漏洞平台 PHP CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/27053
https://cxsecurity.com/issue/WLB-2006010010
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200601-102
|漏洞详情
VenomBoard1.22的add_post.php3中存在SQL注入漏洞,可让远程攻击者通过post.php3的(1)parent、(2)root和(3)topic_id参数执行任意SQL命令。
|漏洞EXP
source: http://www.securityfocus.com/bid/16176/info

Venom Board is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query.

Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation. 

http://www.example.com/venomboard/forum/post.php3?topic_id=999%20union%20select%201,2,3,4,5,6,7/*
|参考资料

来源:XF
名称:venomboard-addpost-sql-injection(24046)
链接:http://xforce.iss.net/xforce/xfdb/24046
来源:BID
名称:16176
链接:http://www.securityfocus.com/bid/16176
来源:OSVDB
名称:22297
链接:http://www.osvdb.org/22297
来源:VUPEN
名称:ADV-2006-0122
链接:http://www.frsirt.com/english/advisories/2006/0122
来源:SECUNIA
名称:18383
链接:http://secunia.com/advisories/18383
来源:BUGTRAQ
名称:20060109[eVuln]VenomBoardSQLInjectionVulnerability
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=113683807903915&w=2
来源:BUGTRAQ
名称:20060109[eVuln]VenomBoardSQLInjectionVulnerability
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=113683807903915&w=2
来源:MISC
链接:http://evuln.com/vulns/21/summary.html
来源:SREASON
名称:326
链接:http://securityreason.com/securityalert/326