OSVDB ID: 37084

Title: PHP Webquest webquest/soporte_derecha_w.php id_actividad Variable SQL Injection

Info

Disclosure

Sep 14, 2007

Discovery

Unknown

Dates

Exploit

Sep 14, 2007

Solution

Unknown

Description

PHP Webquest contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the soporte_derecha_w.php script not properly sanitizing user-supplied input to the 'id_actividad' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

Classification

Location: Remote/Network Access Required
Attack Type: Information Disclosure, Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Exploit: Exploit Available
OSVDB: Web Related

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

PHP Webquest	PHP Webquest	2.5
		2.6

References

CVE ID: 2007-4920 (see also: NVD)
Bugtraq ID: 25668
Secunia Advisory ID: 26821
ISS X-Force ID: 36605
Other Advisory URL: http://milw0rm.com/exploits/4407
FrSIRT Advisory: http://www.frsirt.com/english/advisories/2007/3177

Credit

D4real_TeaM -

Direct URL: http://osvdb.org/36218