| VID |
21406 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The phpBugTracker program has an SQL injection vulnerability via the bug.php script.
phpBugTracker is a Web-based vulnerability tracking system for Microsoft Windows, Linux, and Unix-based operating systems. phpBugTracker 0.9.1 is vulnerable to the SQL Injection attack, caused by a failure of the application to properly sanitize user supplied input in the 'bug.php' script. By supplying a specially crafted URL containing SQL queries in the 'bug_id' variable to the target system, a remote attacker could obtain sensitive information, and add, modify or delete data in the backend database.
* References:
http://www.osvdb.org/displayvuln.php?osvdb_id=5384
http://securitytracker.com/alerts/2004/Apr/1009821.html
http://www.packetstormsecurity.org/0411-exploits/phpbugtraq.txt
* Platforms Affected:
Benjamin Curtis, phpBugTracker 0.9.1
Any operating system Any version |
| Recommendation |
No upgrade or patch available as of December 2004.
Upgrade to the new version of phpBugTracker, when new version fixed this problem becomes available from the phpBugTracker Web Site at http://phpbt.sourceforge.net/ |
| Related URL |
CVE-2004-1519 (CVE) |
| Related URL |
10153 (SecurityFocus) |
| Related URL |
18053 (ISS) |
|
