Nucleus action.php itemid Variable SQL Injection

2004-07-25T04:36:41
ID OSVDB:8258
Type osvdb
Reporter aCiDBiTS(acidbits@hotmail.com)
Modified 2004-07-25T04:36:41

Description

Vulnerability Description

Nucleus contains a flaw that will allow a remote attacker to inject arbitrary SQL code. The problem is that the 'itemid' variable in the 'action.php' script is not verified properly and will allow a remote attacker to inject or manipulate SQL queries.

Solution Description

Upgrade to version 3.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Nucleus contains a flaw that will allow a remote attacker to inject arbitrary SQL code. The problem is that the 'itemid' variable in the 'action.php' script is not verified properly and will allow a remote attacker to inject or manipulate SQL queries.

References:

Vendor URL: http://nucleuscms.org/ Vendor Specific Advisory URL Secunia Advisory ID:12166 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-07/0288.html