Bugtraq mailing list archives
Re: PHP-Fusion v6.00.109 SQL Injection / admin|users credentials disclosure
From: security curmudgeon <jericho () attrition org>
Date: Fri, 30 Sep 2005 05:54:17 -0400 (EDT)
: I believe that this thing has been discovered and fixed long time ago. : check this out, maybe I am wrong: : http://www.gnucitizen.org/writings/php-fusion-messages.php-sql-injection-vulnerability.xhtml Your advisory: POST fields pm_email_notify and pm_save_sent are not properly sanitized. Rgod's advisory: msg_send=' UNION SELECT [..] BID 14489 / OSVDB 18708: msg_view=' So three advisories or points of disclosure, 4 different variables, all in messages.php it seems. Close, but this seems like a different issue.
Current thread:
- PHP-Fusion v6.00.109 SQL Injection / admin|users credentials disclosure retrogod (Sep 28)
- Re: PHP-Fusion v6.00.109 SQL Injection / admin|users credentials disclosure Petko Petkov (Sep 29)
- Re: PHP-Fusion v6.00.109 SQL Injection / admin|users credentials disclosure security curmudgeon (Sep 30)
- Re: PHP-Fusion v6.00.109 SQL Injection / admin|users credentials disclosure Petko Petkov (Sep 29)