| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <8ba534860609011744w1d315da8re1ceb5178e5e7ad1@mail.gmail.com>
Date: Fri, 1 Sep 2006 19:44:35 -0500
From: SirDarckCat <sirdarckcat@...il.com>
To: full-disclosure@...ts.grok.org.uk
Subject: ssLinks v1.22 Multiple SQL Injection
Vulnerabilities
Discovered by Sirdarckcat from elhacker.net
------------------------------------------------------------------------------------
ssLinks v1.22 Multiple SQL Injection Vulnerabilities
http://scripts.incutio.com/sslinks/
------------------------------------------------------------------------------------
SSLinks is a simple PHP Program for administrating
WebSite links exchange, and administration, with a
MySql database.
It suffers of multiple SQL Injection Vulnerabilities.
------------------------------------------------------------------------------------
SQL Injection, "go"
links.php:24-27 => global.inc.php:543-569
The variable $id is never cleaned, so in both, UPDATE and SELECT statements,
is a SQL Injection Bug.
------------------------------------------------------------------------------------
SQL Injection, "rate"
links.php:48-51 => global.inc.php:514-549
The variable $id is never cleaned, so $id is exploitable, in both, the
SELECT and UPDATE statements.
------------------------------------------------------------------------------------
Att.
SirDarckCat
elhacker.net
Content of type "text/html" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists