Ripe Website Manager contact/index.php ripeformpost Variable SQL Injection

2007-04-22T13:03:33
ID OSVDB:35363
Type osvdb
Reporter OSVDB
Modified 2007-04-22T13:03:33

Description

Solution Description

Upgrade to version 0.8.5 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Secunia Advisory ID:24984 Related OSVDB ID: 35362 Other Advisory URL: http://john-martinelli.com/work/ripe.txt Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-04/0384.html ISS X-Force ID: 33818 FrSIRT Advisory: ADV-2007-1519 CVE-2007-2207 Bugtraq ID: 23597