Project

General

Profile

Actions

Security #39

closed

SQL injection vulnerabilities [reported by Marek Alaksa from citadelo]

Added by Manuela over 7 years ago. Updated over 7 years ago.

Status:
Done
Priority:
Sofort
Assignee:
-
Target version:
-
Start date:
2017-03-24
Due date:
% Done:

100%

Estimated time:

Description

Overview
WebsiteBaker 2.10.0 and lower versions are vulnerable to SQL injection vulnerabilities.
Details
It is possible for an unauthenticated user to inject SQL code into the variables "username" and
"display_name" in the "account/signup.php" PHP script (signup form). The vulnerability exists due to
insufficient filtration of user-supplied data. By exploiting this vulnerability, an attacker gains access to all
records stored in the database with the privileges of the WebsiteBaker database user (e.g. administrator
password MD5 hash).

http://www.citadelo.com/

Actions #1

Updated by Manuela over 7 years ago

  • Status changed from New to Done
Actions

Also available in: Atom PDF