AndoNET Blog SQL Injection Vulnerability

2006.01.28

Credit: alex evuln com

Risk: Medium

Local: No

Remote: Yes

CVE: CVE-2006-0462

CWE: CWE-89

CVSS Base Score: 7.5/10

Impact Subscore: 6.4/10

Exploitability Subscore: 10/10

Exploit range: Remote

Attack complexity: Low

Authentication: No required

Confidentiality impact: Partial

Integrity impact: Partial

Availability impact: Partial

New eVuln Advisory:
AndoNET Blog SQL Injection Vulnerability
http://evuln.com/vulns/50/summary.html

--------------------Summary----------------

Software: AndoNET Blog
Sowtware's Web Site: http://www.andonet.tk/
Versions: 2004.09.02
Critical Level: Moderate
Type: SQL Injection
Class: Remote
Status: Unpatched
Exploit: Available
Solution: Not Available
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)
eVuln ID: EV0050

-----------------Description---------------
Vulnerable script: comentarios.php

Variable $HTTP_GET_VARS['entrada'] isn't properly sanitized before being used in a SQL query. This can be used to make any SQL query by injecting arbitrary SQL code.

--------------Exploit----------------------
Available at: http://evuln.com/vulns/50/exploit.html

--------------Solution---------------------
No Patch available.

--------------Credit-----------------------
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)

See this note in RAW Version

Vote for this issue:

50%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

AndoNET Blog SQL Injection Vulnerability

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

AndoNET Blog SQL Injection Vulnerability

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.