| VID |
21645 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The phpWebSite software is vulnerable to multiple vulnerabilities which exist in version 0.10.1 and earlier versions. phpWebSite provides an open-source based web site content management system (CMS) written in PHP. phpWebSite versions 0.10.1 and earlier are vulnerable to multiple vulnerabilities as follows:
1) Multiple SQL Injection Vulnerabilities: Input passed to the "module" and "mod" parameters of the "index.php" script isn't properly sanitized before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
2) A Directory Traversal Vulnerability: By sending a specially-crafted URL request including dot-dot-slash (../) character sequences in the "mod" parameter of the "index.php' script, a remote attacker could read arbitrary files outside of the document root.
* References:
http://www.hackerscenter.com/Archive/view.asp?id=3489
http://phpwebsite.appstate.edu/index.php?module=announce&ANN_user_op=view&ANN_id=989
http://www.osvdb.org/displayvuln.php?osvdb_id=17788
http://www.osvdb.org/displayvuln.php?osvdb_id=17789
http://www.osvdb.org/displayvuln.php?osvdb_id=17790
* Platforms Affected:
Appalachian State University, phpWebSite versions 0.10.1 and earlier
Any Operating system Any version |
| Recommendation |
Upgrade to the latest version of phpWebSite (0.10.1 or later), available from the phpWebSite Web site at http://phpwebsite.appstate.edu/
-- OR --
Apply the phpWebSite patch for this vulnerability (phpwebsite_security_patch_20051012.tgz), available from the phpWebSite Web site at http://phpwebsite.appstate.edu/downloads/security/phpwebsite_security_patch_20050707.1.tgz |
| Related URL |
(CVE) |
| Related URL |
14166,14172 (SecurityFocus) |
| Related URL |
(ISS) |
|
