OSVDB ID: 5368 Title: PostNuke index.php sif Parameter SQL Injection |
Info |
|
|
Dates |
||||
|
|
Description |
PostNuke contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the "sif" variable in the "modules/NS-Comments/index.php" module is not verified properly and will allow an attacker to inject or manipulate SQL queries. |
Classification |
Location:
Remote / Network Access
Attack Type: Information Disclosure, Input Manipulation Impact: Loss of Confidentiality, Loss of Integrity Exploit: Exploit Public Disclosure: OSVDB Verified, Vendor Verified OSVDB: Web Related |
Solution |
PostNuke has released a patch to address this vulnerability. It is also possible to correct the flaw by implementing the following workaround: Modify the source code such that the $sid and $pid variables in modules/NS-Comments/index.php line 1142 are properly verified: VALUES ($nextid, '".pnVarPrepForStore($pid)."', '".pnVarPrepForStore($sid)."', now(), '".pnVarPrepForStore($uname)."', '".pnVarPrepForStore($email)."', '".pnVarPrepForStore($url)."', '".pnVarPrepForStore($ip)."', '".pnVarPrepForStore($subject)."', '".pnVarPrepForStore($comment)."', '".pnVarPrepForStore($score)."', 0)"); |
Products |
|
References |
|
Credit |
|
scan-associates.net - SCAN Associates Sdn. Bhd.