FlexPHPNews news.php newsid Variable SQL Injection

2005-04-21T03:40:59
ID OSVDB:15715
Type osvdb
Reporter Espen Andersson()
Modified 2005-04-21T03:40:59

Description

Vulnerability Description

FlexPHPNews contains a flaw that may allow a remote attacker to inject arbitrary SQL queries. The issue is due to the 'newsid' variable in the 'news.php' script not being properly sanitized and may allow a remote attacker to inject or manipulate SQL queries.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

FlexPHPNews contains a flaw that may allow a remote attacker to inject arbitrary SQL queries. The issue is due to the 'newsid' variable in the 'news.php' script not being properly sanitized and may allow a remote attacker to inject or manipulate SQL queries.

References:

Vendor URL: http://www.china-on-site.com/flexphpnews/ Secunia Advisory ID:14905 Mail List Post: http://attrition.org/pipermail/vim/2007-April/001506.html Keyword: FrSIRT/ADV-2005-0373 ISS X-Force ID: 20214 Generic Exploit URL: http://www.milw0rm.com/exploits/3631 FrSIRT Advisory: ADV-2005-0373 CVE-2005-1237 Bugtraq ID: 13297