News Manager Lite more.asp SQL Injection

2004-03-22T08:48:49
ID OSVDB:4495
Type osvdb
Reporter Manuel Lopez(mantra@gulo.org)
Modified 2004-03-22T08:48:49

Description

Vulnerability Description

News Manager Lite contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the "ID" variable in the more.asp module is not verified properly and will allow an attacker to inject or manipulate SQL queries.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

News Manager Lite contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the "ID" variable in the more.asp module is not verified properly and will allow an attacker to inject or manipulate SQL queries.

Manual Testing Notes

http://[victim]/more.asp?ID='[SQL]

References:

Vendor URL: http://www.expinion.net/software/app_newsmanager.asp Secunia Advisory ID:11180 Related OSVDB ID: 4492 Related OSVDB ID: 4494 Related OSVDB ID: 4493 Related OSVDB ID: 4496 Related OSVDB ID: 4497 Keyword: News Manager Lite Keyword: SQL Injection ISS X-Force ID: 15548 Bugtraq ID: 9935