WB 2.11.0: Issueshttps://project.websitebaker.org/https://project.websitebaker.org/favicon.ico?16699092072017-03-24T15:58:38ZTracking
Redmine Security #39 (Done): SQL injection vulnerabilities [reported by Marek Alaksa from citadelo]https://project.websitebaker.org/issues/392017-03-24T15:58:38ZManuelamanu54@isteam.de
<p>Overview<br />WebsiteBaker 2.10.0 and lower versions are vulnerable to SQL injection vulnerabilities.<br />Details<br />It is possible for an unauthenticated user to inject SQL code into the variables "username" and<br />"display_name" in the "account/signup.php" PHP script (signup form). The vulnerability exists due to<br />insufficient filtration of user-supplied data. By exploiting this vulnerability, an attacker gains access to all<br />records stored in the database with the privileges of the WebsiteBaker database user (e.g. administrator<br />password MD5 hash).</p>
<p><a class="external" href="http://www.citadelo.com/">http://www.citadelo.com/</a></p>