OpenBB MyHome.PHP SQL Injection Vulnerability
BID:10044
Info
OpenBB MyHome.PHP SQL Injection Vulnerability
| Bugtraq ID: | 10044 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 05 2004 12:00AM |
| Updated: | Apr 05 2004 12:00AM |
| Credit: | Disclosure of this issue is credited to Mark Tesn <[email protected]>. |
| Vulnerable: |
OpenBB OpenBB 1.0.6 |
| Not Vulnerable: | |
Discussion
OpenBB MyHome.PHP SQL Injection Vulnerability
It has been reported that OpenBB is prone to a vulnerability that may allow malicious users to influence SQL queries of the affected application. This issue is due to a failure of the application to properly sanitize user-supplied URI data.
This may allow a remote attacker to manipulate query logic, potentially leading to access to sensitive information such as the administrator password hash or corruption of database data. SQL injection attacks may also potentially be used to exploit latent vulnerabilities in the underlying database implementation.
It has been reported that OpenBB is prone to a vulnerability that may allow malicious users to influence SQL queries of the affected application. This issue is due to a failure of the application to properly sanitize user-supplied URI data.
This may allow a remote attacker to manipulate query logic, potentially leading to access to sensitive information such as the administrator password hash or corruption of database data. SQL injection attacks may also potentially be used to exploit latent vulnerabilities in the underlying database implementation.
Exploit / POC
OpenBB MyHome.PHP SQL Injection Vulnerability
No exploit is required to leverage this issue. The following proof of concept has been provided:
http://www.example.com/myhome.php?action=readmsg&id=1[SQL CODE]
No exploit is required to leverage this issue. The following proof of concept has been provided:
http://www.example.com/myhome.php?action=readmsg&id=1[SQL CODE]
Solution / Fix
OpenBB MyHome.PHP SQL Injection Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.