OlateDownload 3.4 - search.php?query SQL Injection

2006-09-29T00:00:00
ID EXPLOITPACK:EF9178D4C4B760A6FB81F193EC972797
Type exploitpack
Reporter Hessam-x
Modified 2006-09-29T00:00:00

Description

OlateDownload 3.4 - search.php?query SQL Injection

                                        
                                            source: https://www.securityfocus.com/bid/20278/info
 
OlateDownload is prone to multiple input-validation vulnerabilities, including HTML-injection and SQL-injection issues, because the application fails to properly sanitize user-supplied input. 
 
A successful exploit of these vulnerabilities could allow an attacker to inject hostile HTML and script code into vulnerable sections of the application, steal cookie-based authentication credentials from legitimate users of the site, or even exploit vulnerabilities in the underlying database implementation. Other attacks are also possible.
 
OlateDownload version 3.4.0 is vulnerable.

http://www.example.com/search.php?query=%BF%27%22%28