Particle Gallery viewimage.php imageid Variable SQL Injection

2006-06-05T05:05:36
ID OSVDB:25953
Type osvdb
Reporter r0t(krustevs@googlemail.com)
Modified 2006-06-05T05:05:36

Description

Vulnerability Description

Particle gallery contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the viewimage.php script not properly sanitizing user-supplied input to the imageid variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

Solution Description

Upgrade to version 1.0.1 or higher, as it has been reported to fix this vulnerability.

Short Description

Particle gallery contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the viewimage.php script not properly sanitizing user-supplied input to the imageid variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

References:

Vendor URL: http://www.particlesoft.net/particlegallery/ Vendor Specific Solution URL: http://www.particlesoft.net/downloads.htm Secunia Advisory ID:20427 Other Advisory URL: http://pridels.blogspot.com/2006/06/particle-gallery-sql-inj.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-06/0006.html FrSIRT Advisory: ADV-2006-2121 CVE-2006-2862 Bugtraq ID: 18270