EV0021.txt

`New eVuln Advisory:  
Venom Board SQL Injection Vulnerability  
  
--------------------Summary----------------  
  
Software: Venom Board  
Sowtware's Web Site: http://sourceforge.net/projects/venomboard/  
Versions: 1.22  
Critical Level: Moderate  
Type: Cross-Site Scripting  
Class: Remote  
Status: Unpatched  
Exploit: Available  
Solution: Not Available  
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)  
Published: 2006.01.09  
eVuln ID: EV0021  
  
-----------------Description---------------  
Vulnerable script:  
add_post.php3  
  
Variables $parent $root $topic_id isn't properly sanitized before being used in a SQL query. This can be used to make any SQL query by injecting arbitrary SQL code.  
  
--------------Exploit----------------------  
SQL Injection Example:  
  
http://host/venomboard/forum/post.php3?topic_id=999%20union%20select%201,2,3,4,5,6,7/*  
  
--------------Solution---------------------  
No Patch available.  
  
--------------Credit-----------------------  
Original Advisory:  
http://evuln.com/vulns/21/summary.html  
  
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)  
`