Project

General

Profile

Security #39

SQL injection vulnerabilities [reported by Marek Alaksa from citadelo]

Added by admin about 2 years ago. Updated about 2 years ago.

Status:
Erledigt
Priority:
Sofort
Assignee:
Target version:
-
Start date:
2017-03-24
Due date:
% Done:

100%

Estimated time:
Operating System:
Linux

Description

Overview
WebsiteBaker 2.10.0 and lower versions are vulnerable to SQL injection vulnerabilities.
Details
It is possible for an unauthenticated user to inject SQL code into the variables "username" and
"display_name" in the "account/signup.php" PHP script (signup form). The vulnerability exists due to
insufficient filtration of user-supplied data. By exploiting this vulnerability, an attacker gains access to all
records stored in the database with the privileges of the WebsiteBaker database user (e.g. administrator
password MD5 hash).

http://www.citadelo.com/

History

#1 Updated by admin about 2 years ago

  • Status changed from Neu to Erledigt

Also available in: Atom PDF