Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:10418
HistoryNov 28, 2005 - 12:00 a.m.

ADC2000 NG Pro SQL inj. vuln.

2005-11-2800:00:00
vulners.com
13
JSON

ADC2000 NG Pro SQL inj. vuln.
Vuln. dicovered by : r0t
Date: 27 nov. 2005
Orginal advisory:http://pridels.blogspot.com/2005/11/adc2000-ng-pro-sql-inj-vuln.html
vendor:http://www.td-systems.com/products/
affected version: 1.2 and ADC2000 NG Pro Lite

Product Description:
AD Center 2000 NG Pro is a professional version of banner exchange
software for organizing your own Banner Exchange. Software uses MySQL
backend, and has rich media ads support, multibanner support, advanced
targeting, multilanguage support, flash stats and much more. C-engine
with internal cache system allow you to have huge loadings and show up
to 6 millions banners per day.

Vuln. description:
Input passed to the "lang" and "cat" parameter in "adcbrowres.php"
isn't properly sanitised before being used in a SQL query.This can be
exploited to manipulate SQL queries by injecting arbitrary SQL code.

example:
/adcbrowres.php?lang=english&cat=[SQL]
/adcbrowres.php?lang=[SQL]

Solution:
Edit the source code to ensure that input is properly sanitised.

JSON