Mambo Open Source emailfaq.php id Variable SQL Injection

2003-09-19T10:53:48
ID OSVDB:7486
Type osvdb
Reporter Lifo Fifo(lifofifo20@yahoo.com)
Modified 2003-09-19T10:53:48

Description

Vulnerability Description

Mambo Open Source contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the "id" variable in the "emailfaq.php" script is not verified properly and will allow an attacker to inject or manipulate SQL queries.

Solution Description

Upgrade to version 4.0.14 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Mambo Open Source contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the "id" variable in the "emailfaq.php" script is not verified properly and will allow an attacker to inject or manipulate SQL queries.

References:

Vendor URL: http://www.mamboserver.com/ Secunia Advisory ID:9796 Related OSVDB ID: 2166 Related OSVDB ID: 7485 Related OSVDB ID: 7484 Related OSVDB ID: 7487 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2003-09/0303.html Generic Informational URL: http://www.hackingzone.org/secviewarticle.php?id=11 Bugtraq ID: 8647