Mahara Username Generation SQL Injection Vulnerability
BID:39253
Info
Mahara Username Generation SQL Injection Vulnerability
| Bugtraq ID: | 39253 |
| Class: | Input Validation Error |
| CVE: |
CVE-2010-0400 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 06 2010 12:00AM |
| Updated: | Apr 07 2010 03:12PM |
| Credit: | Debian |
| Vulnerable: |
Mahara Mahara 1.2.3 Mahara Mahara 1.1.7 Mahara Mahara 1.1.6 Mahara Mahara 1.1.5 Mahara Mahara 1.1.4 Mahara Mahara 1.1.3 Mahara Mahara 1.1.2 Mahara Mahara 1.1.1 Mahara Mahara 1.0.13 Mahara Mahara 1.0.12 Mahara Mahara 1.0.11 Mahara Mahara 1.0.10 Mahara Mahara 1.0.9 Mahara Mahara 1.0.8 Mahara Mahara 1.0.6 Mahara Mahara 1.0.5 Mahara Mahara 1.0.4 Mahara Mahara 1.0.3 Mahara Mahara 1.0.2 Mahara Mahara 1.0.1 Mahara Mahara 1.0 Debian Linux 5.0 sparc Debian Linux 5.0 s/390 Debian Linux 5.0 powerpc Debian Linux 5.0 mipsel Debian Linux 5.0 mips Debian Linux 5.0 m68k Debian Linux 5.0 ia-64 Debian Linux 5.0 ia-32 Debian Linux 5.0 hppa Debian Linux 5.0 armel Debian Linux 5.0 arm Debian Linux 5.0 amd64 Debian Linux 5.0 alpha Debian Linux 5.0 |
| Not Vulnerable: |
Mahara Mahara 1.2.4 Mahara Mahara 1.1.8 Mahara Mahara 1.0.14 |
Discussion
Mahara Username Generation SQL Injection Vulnerability
Mahara is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.
Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
Mahara is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.
Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
Exploit / POC
Mahara Username Generation SQL Injection Vulnerability
Attackers can use readily available network utilities to exploit this issue.
Attackers can use readily available network utilities to exploit this issue.
Solution / Fix
Mahara Username Generation SQL Injection Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Debian Linux 5.0 ia-64
Debian Linux 5.0 alpha
Debian Linux 5.0 ia-32
Debian Linux 5.0 s/390
Debian Linux 5.0 mipsel
Debian Linux 5.0 hppa
Debian Linux 5.0 m68k
Debian Linux 5.0 arm
Debian Linux 5.0 armel
Debian Linux 5.0
Debian Linux 5.0 amd64
Debian Linux 5.0 mips
Debian Linux 5.0 powerpc
Debian Linux 5.0 sparc
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Debian Linux 5.0 ia-64
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
Debian Linux 5.0 alpha
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
Debian Linux 5.0 ia-32
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
Debian Linux 5.0 s/390
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
Debian Linux 5.0 mipsel
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
Debian Linux 5.0 hppa
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
Debian Linux 5.0 m68k
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
Debian Linux 5.0 arm
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
Debian Linux 5.0 armel
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
Debian Linux 5.0
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
Debian Linux 5.0 amd64
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
Debian Linux 5.0 mips
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
Debian Linux 5.0 powerpc
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
Debian Linux 5.0 sparc
-
Debian mahara-apache2_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara-apache2_1 .0.4-4+lenny5_all.deb -
Debian mahara_1.0.4-4+lenny5_all.deb
http://security.debian.org/pool/updates/main/m/mahara/mahara_1.0.4-4+l enny5_all.deb
References
Mahara Username Generation SQL Injection Vulnerability
References:
References:
- Mahara 1.2.4, 1.1.8, and 1.0.14 Released (Mahara)
- Mahara Homepage (Mahara)
- SQL injection in 1.0.13, 1.1.7 and 1.2.3 (Mahara)