glFusion 'SESS_updateSessionTime()' SQL Injection Vulnerability

Bugtraq ID:	34361
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Apr 03 2009 12:00AM
Updated:	Apr 09 2009 10:06PM
Credit:	Nine:Situations:Group::bookoo
Vulnerable:	glFusion glFusion 1.1.2 glFusion glFusion 1.1.1 glFusion glFusion 1.1 Geeklog Geeklog 1.5.2 Geeklog Geeklog 1.5.1 Geeklog Geeklog 1.5 Geeklog Geeklog 1.4.1 Geeklog Geeklog 1.4 sr1 Geeklog Geeklog 1.3.11 sr4 Geeklog Geeklog 1.3.11 sr3 Geeklog Geeklog 1.3.11 sr1 Geeklog Geeklog 1.3.11 rc1 Geeklog Geeklog 1.3.11 Geeklog Geeklog 1.3.10 Geeklog Geeklog 1.3.9 sr3 Geeklog Geeklog 1.3.9 sr2 Geeklog Geeklog 1.3.9 sr1 Geeklog Geeklog 1.3.9 Geeklog Geeklog 1.3.8 rc2 Geeklog Geeklog 1.3.8 rc1 Geeklog Geeklog 1.3.8 -1sr2 Geeklog Geeklog 1.3.8 -1sr1 Geeklog Geeklog 1.3.8 -1 Geeklog Geeklog 1.3.8 Geeklog Geeklog 1.3.7 sr2 Geeklog Geeklog 1.3.7 sr1 Geeklog Geeklog 1.3.7 Geeklog Geeklog 1.3.5 sr2 Geeklog Geeklog 1.3.5 sr1 Geeklog Geeklog 1.3.5 Geeklog Geeklog 1.3 - Apache Software Foundation Apache 1.3.22 - Apache Software Foundation Apache 1.3.20 - Apache Software Foundation Apache 1.3.20 - Apache Software Foundation Apache 1.3.19 - Apache Software Foundation Apache 1.3.19 - Apache Software Foundation Apache 1.3.18 - Apache Software Foundation Apache 1.3.18 - Apache Software Foundation Apache 1.3.17 - Apache Software Foundation Apache 1.3.17 Geeklog Geeklog 1.4.0sr4 Geeklog Geeklog 1.4.0sr4 Geeklog Geeklog 1.4.0sr3 Geeklog Geeklog 1.4.0sr2 Geeklog Geeklog 1.3.9sr5 Geeklog Geeklog 1.3.11sr5

Not Vulnerable:	glFusion glFusion 1.1.3 Geeklog Geeklog 1.5.2 sr2