Invision Power Board Forums.php sort_key SQL Injection

2003-12-15T00:00:00
ID OSVDB:3364
Type osvdb
Reporter OSVDB
Modified 2003-12-15T00:00:00

Description

Vulnerability Description

Invision Power Board contains a flaw that allows a remote attacker to inject arbitrary SQL commands to modify or delete content in the backend database. The issue is due to poor sanity checking on the "sort_key" variable in the Forums.php script.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Invision Power Services has released a patch to address this vulnerability.

Short Description

Invision Power Board contains a flaw that allows a remote attacker to inject arbitrary SQL commands to modify or delete content in the backend database. The issue is due to poor sanity checking on the "sort_key" variable in the Forums.php script.

References:

Vendor URL: http://www.invisionboard.com/ Vendor Specific Solution URL: http://forums.invisionpower.com/index.php?showtopic=106774&st=0%EF%BF%BDentry762426 Secunia Advisory ID:10446 Other Advisory URL: http://www.gulftech.org/12162003.php Nessus Plugin ID:11977 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2003-12/0232.html ISS X-Force ID: 14005 Generic Informational URL: http://forums.invisionpower.com/index.php?showtopic=106774&st=0%EF%BF%BDentry762426 Bugtraq ID: 9232