ssLinks <=v1.22 Multiple SQL Injection Vulnerabilities Sep 02 2006 12:32AM
sirdarckcat gmail com
Discovered by Sirdarckcat from elhacker.net

------------------------------------------------------------------------
------------

ssLinks v1.22 Multiple SQL Injection Vulnerabilities

http://scripts.incutio.com/sslinks/

------------------------------------------------------------------------
------------

SSLinks is a simple PHP Program for administrating

WebSite links exchange, and administration, with a

MySql database.

It suffers of multiple SQL Injection Vulnerabilities.

------------------------------------------------------------------------
------------

SQL Injection, "go"

links.php:24-27 => global.inc.php:543-569

The variable $id is never cleaned, so in both, UPDATE and SELECT statements, is a SQL Injection Bug.

------------------------------------------------------------------------
------------

SQL Injection, "rate"

links.php:48-51 => global.inc.php:514-549

The variable $id is never cleaned, so $id is exploitable, in both, the SELECT and UPDATE statements.

------------------------------------------------------------------------
------------

Att.

SirDarckCat

elhacker.net

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus