MWNewsletter subscribe.php user_name Variable SQL Injection

2006-04-06T06:32:36
ID OSVDB:24905
Type osvdb
Reporter OSVDB
Modified 2006-04-06T06:32:36

Description

Vulnerability Description

MWNewsletter contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the subscribe.php script not properly sanitizing user-supplied input to the 'user_name' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

Technical Description

This vulnerability is only present when the magic_quotes_gpc PHP option is 'off'.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

MWNewsletter contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the subscribe.php script not properly sanitizing user-supplied input to the 'user_name' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

References:

Vendor URL: http://www.manicweb.co.uk/ Related OSVDB ID: 24445 Related OSVDB ID: 24446 Keyword: EV0123 FrSIRT Advisory: ADV-2006-1270 CVE-2006-1691 CVE-2006-1692