Webmatic version 3.1.1 and probably prior suffer from blind SQL injection vulnerability:
SQL Injection:
Input passed via the "Referer:" field of the HTTP header to "index.php" script is not properly sanitised before being used in a SQL query. However the SQL injection is blind and shall be exploited by a time-based technique, or any other, suitable for blind SQL injection exploitation.
Vulnerability ID: HTB23096
Vendor Notification / Public Disclosure Dates: 13 June / 4 July 2012
Vulnerabilitiy Type: Blind SQL Injection
Risk level: High
Solution: Edit source code to sanitise user input.
Read full information, details and Proof of Concept (PoC) for this advisory: High-Tech Bridge Advisory HTB23096: Blind SQL Injection in Webmatic.
No comments:
Post a Comment