|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
PHP-Nuke SQL Injection
From: mod (rottyfig12
hotmail.com)
Date: Wed Oct 08 2003 - 10:37:38 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Version: PHP-Nuke 6.6
Language: PHP
Web site: phpnuke.org
Status: Vendor has been notified
There's an SQL injection hole in modules.php.
http://phpnuke.org/modules.php?name=Downloads&d_op=viewdownload&cid=59%20or%20cid=2
This is from not filtering 'cid', it should be checked that it is only numeric with is_numeric(). This hole could allow viewing of password hashes if the database is mysql 4.x.
This may effect other versions.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]