OpenConf 'edit.php' SQL Injection Vulnerability
BID:51927
Info
OpenConf 'edit.php' SQL Injection Vulnerability
| Bugtraq ID: | 51927 |
| Class: | Input Validation Error |
| CVE: |
CVE-2012-1002 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 08 2012 12:00AM |
| Updated: | May 02 2012 07:41PM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
OpenConf OpenConf 4.11 OpenConf OpenConf 4.10 OpenConf OpenConf 4.02 OpenConf OpenConf 4.01 OpenConf OpenConf 4.00 |
| Not Vulnerable: |
OpenConf OpenConf 4.12 |
Discussion
OpenConf 'edit.php' SQL Injection Vulnerability
OpenConf is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data.
A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
Versions prior to OpenConf 4.12 are vulnerable.
OpenConf is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data.
A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
Versions prior to OpenConf 4.12 are vulnerable.
Exploit / POC
OpenConf 'edit.php' SQL Injection Vulnerability
An attacker can exploit the issue using a browser.
The following exploit code is available:
An attacker can exploit the issue using a browser.
The following exploit code is available:
Solution / Fix
OpenConf 'edit.php' SQL Injection Vulnerability
Solution:
Updates are available; please see the references for more information.
Solution:
Updates are available; please see the references for more information.
References
OpenConf 'edit.php' SQL Injection Vulnerability
References:
References:
- OpenConf Homepage (OpenConf)
- Version 4.12 Security Release (OpenConf)
- [CVE-2012-1002] OpenConf <= 4.11 (author/edit.php) Blind SQL ( Egidio Romano aka EgiX)