BID:30133

BrewBlogger 'logincheck.inc.php' SQL Injection Vulnerability

Info

BrewBlogger 'logincheck.inc.php' SQL Injection Vulnerability

Bugtraq ID:	30133
Class:	Input Validation Error
CVE:	CVE-2008-6911
Remote:	Yes
Local:	No
Published:	Jul 08 2008 12:00AM
Updated:	May 07 2015 05:27PM
Credit:	CWH Underground
Vulnerable:	BrewBlogger BrewBlogger 2.1 .1

Not Vulnerable:

Discussion

BrewBlogger 'logincheck.inc.php' SQL Injection Vulnerability

BrewBlogger is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.

Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

BrewBlogger 2.1.0.1 is vulnerable; other versions may also be affected.

Exploit / POC

BrewBlogger 'logincheck.inc.php' SQL Injection Vulnerability

An attacker can exploit these issues via a browser.

The following exploit code is available:

/data/vulnerabilities/exploits/30133.pl

Solution / Fix

BrewBlogger 'logincheck.inc.php' SQL Injection Vulnerability

Solution:
The vendor has released a patch. Please see the references for more information.

BrewBlogger BrewBlogger 2.1 .1

BrewBlogger BB_login_patch.zip
http://www.brewblogger.net/downloads/BB_login_patch.zip

References

BrewBlogger 'logincheck.inc.php' SQL Injection Vulnerability

References:

BrewBlogger Homepage (BrewBlogger)