Re: [Full-disclosure] Amiro.CMS <= 5.4.4 SQL inj



On Thu, 22 Apr 2010 21:20:26 +0400
Владимир Воронцов <vladimir.vorontsov@xxxxxxxx> wrote:

No.

On Thu, 22 Apr 2010 18:35:48 +0300, Henri Salo <henri@xxxxxxx> wrote:
On Thu, 22 Apr 2010 09:52:26 +0400
Владимир Воронцов <vladimir.vorontsov@xxxxxxxx> wrote:

In the system of site management Amiro.CMS found a critical
vulnerability introduction operators database. The vulnerability
allows an attacker, in particular, to compromise a target system,
gain administrative access.

Vulnerability has been discovered introduction of operators
database at user registration. An attacker can fill in the
"signature in the forum" with special data and affect the
structure of the query to the DBMS. Information about the request
not be displayed on the screen, thus possibly

conduct "blind" injections in order to obtain data or injections in
order to displace the data. Injection takes place in the operator
database INSERT. Further details were not disclosed at the request
of the developer.

Original at Russian: http://onsec.ru/vuln?id=20

Have you requested CVE-identifier for this?

---
Henri Salo


Please do: http://cve.mitre.org/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Relevant Pages

  • [Full-disclosure] Facebook Places private information leak
    ... A vulnerability was discovered in Facebook Places that could be exploited to ... consequences of rapid automatic checkins and geolocation spoofing. ... This could allow an attacker to: ... Stalk a user by creating a database of all checkins within a given area, ...
    (Full-Disclosure)
  • [Full-Disclosure] OpenBB 1.06 SQL Injection
    ... A vulnerability exists in OpenBB 1.06 that could allow an attacker to ... queries and obtain sensitive information from the database such as ...
    (Full-Disclosure)
  • OpenBB 1.06 SQL Injection
    ... A vulnerability exists in OpenBB 1.06 that could allow an attacker to manipulate SQL ... As far as I know this vulnerability can only be exploited if the database server the ...
    (Bugtraq)
  • SQL injection bug found in TBSource.
    ... A vulnerability found in the popular bittorrent tracker TBSource code allows an attacker to inject SQL queries and read secret information from the database. ...
    (Bugtraq)
  • Re: [Full-disclosure] Amiro.CMS <= 5.4.4 SQL inj
    ... vulnerability introduction operators database. ... Vulnerability has been discovered introduction of operators database ... An attacker can fill in the "signature in the ...
    (Full-Disclosure)