Lucene search

K

EV0011.txt

🗓️ 04 Jan 2006 00:00:00Reported by Aliaksandr HartsuyeuType 
packetstorm
 packetstorm
🔗 packetstormsecurity.com👁 23 Views

New Advisory: ScozBook "adminname" Authentication Bypass, SQL Injection in ScozBook BETA 1.

Show more

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Code
`New eVuln Advisory:  
ScozBook "adminname" Authentication Bypass  
  
--------------------Summary----------------  
Vendor: ScozNet  
Vendor's Web Site: http://www.scoznet.com/  
Software: ScozBook  
Sowtware's Web Site: http://sourceforge.net/projects/scozbook/  
Versions: BETA 1.1  
Critical Level: Moderate  
Type: SQL Injection  
Class: Remote  
Status: Unpatched  
Exploit: Available  
Solution: Not Available  
Discovered by: Aliaksandr Hartsuyeu ([email protected])  
Published: 2006.01.02  
eVuln ID: EV0011  
  
-----------------Description--------------  
Vulnerable scripts:  
auth.php  
  
Variable $adminname isn't properly sanitized before being used in a SQL query.  
  
Script /auth.php from main directory registers session with $adminname and $adminpass variables which used by scripts from /admin/ dirrectory.  
  
Condition: magic_quotes_gpc = off  
  
--------------Exploit---------------------  
Link:  
http://host/auth.php  
  
username: a' or 'a'='a'/*  
password: anypassword  
  
  
--------------Solution---------------------  
No Patch available.  
  
--------------Credit---------------------  
Original Advisory:  
http://evuln.com/vulns/11/summary.html  
  
Discovered by: Aliaksandr Hartsuyeu ([email protected])  
  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
04 Jan 2006 00:00Current
7.4High risk
Vulners AI Score7.4
23
.json
Report