Info

Disclosure

Oct 01, 2004

Discovery

Unknown

Dates

Exploit

Oct 01, 2004

Solution

Unknown

Description

bBlog contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the 'p' variable in the 'rss.php' module is not verified properly and will allow an attacker to inject or manipulate SQL queries.

Classification

Location: Remote/Network Access Required
Attack Type: Information Disclosure, Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Exploit: Exploit Available
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Upgrade to version 0.7.4 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): Add '$p = array();' to line 13 of the rss.php module if you are familiar with PHP.

Products

Eaden McKee	BBLog	0.6.x
		0.7.1
		0.7.2
		0.7.3
		0.7.4

References

Security Tracker: 1011485
Secunia Advisory ID: 12691
ISS X-Force ID: 17552
CVE ID: 2004-1570 (see also: NVD)
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-09/0461.html
Other Advisory URL: http://www.bblog.com/viewtopic.php?t=790

Credit

James McGlinn -

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Eaden McKee

BBLog

References

Credit