WoltLab Burning Board session.php Multiple Parameter SQL Injection

2005-03-03T08:22:25
ID OSVDB:14356
Type osvdb
Reporter OSVDB
Modified 2005-03-03T08:22:25

Description

Vulnerability Description

Woltlab contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the wbb_userid and lastvisit variables in the session.php module are not verified properly and will allow an attacker to inject or manipulate SQL queries.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, vendor has released patches for 2.0.3, 2.1.5, 2.2.1, and 2.3.0 to address this vulnerability.

Short Description

Woltlab contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the wbb_userid and lastvisit variables in the session.php module are not verified properly and will allow an attacker to inject or manipulate SQL queries.

References:

Vendor URL: http://www.woltlab.com/ Vendor Specific Solution URL: http://www.woltlab.de/members/?l=en Vendor Specific Advisory URL Security Tracker: 1013351 Secunia Advisory ID:14450 CVE-2005-0661