SQL-injection vulnerability in Admidio

Posted: September 4, 2012 in Vulnerabilities
Tags: , , ,
0

SQL-InjectionVulnerability: SQL-injection in Admidio

Impact:

– Cross Site Scripting;
– Unauthorized manipulation of data.

Affected products: Admidio 2.x

Affected versions: Admidio 2.3.5, possibly earlier.

Description:

The vulnerability allows a remote user to execute arbitrary SQL commands in the application database.

1. The vulnerability is caused due to insufficient input validation in the parameter “headline” in the script adm_program / modules / guestbook / guestbook_new.php. This can be exploited to execute arbitrary HTML and script code in a user’s browser session in context of an affected site.

2. The vulnerability is caused due to insufficient input validation in the parameter “active_role” in script adm_program / modules / lists / lists.php. This can be exploited to execute arbitrary SQL commands in the application database.

Manufacturer URL: http://www.admidio.org/

Solution: Install the latest version 2.3.6 from the manufacturer.

links:

http://www.admidio.org/forum/viewtopic.php?t=5108
http://www.admidio.org/index.php?page=changelog_23
http://www.darksecurity.de/advisories/2012/SSCHADV2012-019.txt

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s