Web Wiz Forums String Filtering SQL Injection Vulnerability

Bugtraq ID:	23051
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Mar 20 2007 12:00AM
Updated:	Mar 21 2007 02:54AM
Credit:	Ivan Fratric is credited with the discovery of this vulnerability.
Vulnerable:	Web Wiz Forum 8.05
Not Vulnerable:	Web Wiz Forum 8.05a

Web Wiz Forums String Filtering SQL Injection Vulnerability

Web Wiz Forums is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.

Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database implementation.

This issue affects versions prior to 8.05a; other versions may also be affected.

Web Wiz Forums String Filtering SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following proof of concept demonstrates this vulnerability:

http://www.example.com/[path]/News/page.asp?NewsID=[SQL]

• /data/vulnerabilities/exploits/23051.html

Web Wiz Forums String Filtering SQL Injection Vulnerability

Solution:
The vendor released an update to address this issue. Please see the references for more information.

Web Wiz Forums String Filtering SQL Injection Vulnerability

References:

• Web Wiz Forums Homepage (Web Wiz)
  
• Web Wiz Forums version 8.05a released (Web Wiz)
  
• Web Wiz Forums 8.05 (MySQL version) SQL Injection ([email protected])