| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: 10 Jan 2005 19:10:54 -0000 From: Martin Heistermann <martin.heistermann@....de> To: bugtraq@...urityfocus.com Subject: Woltlab Burning Book addentry.php SQL Injection Advisory Information -------------------- Advisory name : Woltlab Burning Book addentry.php SQL Injection Discovered by : drhankey / it-security23.net Vendor Name : Woltlab Vendor Homepage : http://www.woltlab.de Software : Woltlab Burning Book Lite Vulnerability Type : Cross-Site-Scripting Vulnerable Versions : 1.0 Gold, 1.1.1e, maybe more Platforms : OS Independent, PHP What is Woltlab Burning Book ? ---------------------------------- Woltlab Burning Board Lite is a free guestbook system. Vulnerability Description: ------------------------- When you post a message, addentry.php executes a SQL Query writing it in the db. The user-agent is also saved, but not filtered. So its possible to modify the SQL Query when you change your user-agent.
Powered by blists - more mailing lists