Expinion.net Member Management System ID Parameter SQL Injection Vulnerability
BID:9931
Info
Expinion.net Member Management System ID Parameter SQL Injection Vulnerability
| Bugtraq ID: | 9931 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 20 2004 12:00AM |
| Updated: | Mar 20 2004 12:00AM |
| Credit: | Discovery is credited to Manuel Lopez <[email protected]>. |
| Vulnerable: |
Expinion.net Member Management System 2.1 |
| Not Vulnerable: |
Expinion.net Member Management System 2.2 |
Discussion
Expinion.net Member Management System ID Parameter SQL Injection Vulnerability
It has been reported that Member Management System may be prone to a SQL injection vulnerability that may allow a remote attacker to inject malicious SQL syntax into database queries. The problem is reported to exist in the 'ID' parameter contained within the 'resend.asp' and 'news_view.asp' scripts.
Member Management System version 2.1 has been reported to be affected by this issue, however, other versions may be vulnerable as well.
It has been reported that Member Management System may be prone to a SQL injection vulnerability that may allow a remote attacker to inject malicious SQL syntax into database queries. The problem is reported to exist in the 'ID' parameter contained within the 'resend.asp' and 'news_view.asp' scripts.
Member Management System version 2.1 has been reported to be affected by this issue, however, other versions may be vulnerable as well.
Exploit / POC
Expinion.net Member Management System ID Parameter SQL Injection Vulnerability
No exploit is required.
The following proof of concept has been provided:
http://www.example.com/resend.asp?ID=[SQL query]
http://www.example.com/news_view.asp?ID=[SQL query]
No exploit is required.
The following proof of concept has been provided:
http://www.example.com/resend.asp?ID=[SQL query]
http://www.example.com/news_view.asp?ID=[SQL query]
Solution / Fix
Expinion.net Member Management System ID Parameter SQL Injection Vulnerability
Solution:
Expinion.net has released Member Management System 2.2 to address this issue. Please contact the vendor to obtain the fixed version.
Solution:
Expinion.net has released Member Management System 2.2 to address this issue. Please contact the vendor to obtain the fixed version.
References
Expinion.net Member Management System ID Parameter SQL Injection Vulnerability
References:
References:
- Member Management System Product Page (Expinion.net)