aiocp 'cp_polls_results.php' SQL注入漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1116499 漏洞类型 SQL注入
发布时间 2008-10-27 更新时间 2008-10-29
CVE编号 CVE-2008-4782 CNNVD-ID CNNVD-200810-491
漏洞平台 PHP CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/32537
https://www.securityfocus.com/bid/80816
https://cxsecurity.com/issue/WLB-2008100257
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200810-491
|漏洞详情
AllInOneControlPanel(AIOCP)中的public/code/cp_polls_results.php存在SQL注入漏洞,允许远程攻击者借助poll_id参数执行任意的SQL指令。
|漏洞EXP
source: http://www.securityfocus.com/bid/31949/info

All In One Control Panel (AIOCP) is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.

Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

AIOCP 1.4 is vulnerable; other versions may also be affected. 

http://www.example.com/public/code/cp_polls_results.php?poll_language=eng&poll_id=-0+union+select+0,1,2,version(),4,5,6--
|受影响的产品
AIOCP AIOCP 1.4.1 AIOCP AIOCP 1.4.000
|参考资料

来源:MILW0RM
名称:6854
链接:http://www.milw0rm.com/exploits/6854
来源:SREASON
名称:4518
链接:http://securityreason.com/securityalert/4518
来源:SECUNIA
名称:32431
链接:http://secunia.com/advisories/32431