Vulnerability information
Lore is a WEB-based article management system.
Lore does not adequately filter URIs submitted by users, and remote attackers can exploit the vulnerability to conduct SQL injection attacks to obtain sensitive information.
The problem is that the 'Article.PHP' script lacks sufficient filtering of the 'id' parameter submitted by the user. Submitting malicious SQL queries as parameter data can change the original SQL logic, obtain sensitive information, or possibly operate the database.
BUGTRAQ ID: 15665
CNCAN ID: CNCAN-2005120207
Vulnerability message time: 2005-12-01
Vulnerability cause
input validation error
affects system
Lore 1.5.4
Harm
Remote attackers can use the vulnerability to perform SQL injection attacks to obtain sensitive information.
Required Conditions for Attack
The attacker must have access to Lore.
Test method
http://www.example.com/article.php?id=1[SQL]Manufacturer
solution
There is currently no solution provided, please follow the following link
:
http://www.pineappletechnologies.com/products/loreVulnerabilities
Provider
r0t
vulnerability message link
http://pridels.blogspot.com/2005/12/lore-sql-inj-vuln.htmlVulnerability
message title
Lore SQL inj. vuln.