Advertisement
Home arrow ITsec Advisories arrow Open Business Management Multiple Vulnerabilities
Saturday, 22 November 2008
  
 
Last week attacks
O.S.  Defs.  %
Linux  8778  71.58%
Win 2003  1950  15.90%
Win 2000  722  5.89%
Solaris 9/10  402  3.28%
FreeBSD  226  1.84%
Other  185  1.51%

Total attacks: 12263 of which 4619 single ip and 7644 mass defacements

Main Menu
Home
Digital Warfare
Geopolitics
ITsec News
ITsec Advisories
Test Drive
360°
Digital Attacks Archive
Zone-H events
Publications
Zone-H Friends/Partners
Contact Us
Search
Download Area
Zone-H forum
About this website
Login Form





Lost Password?
No account yet? Register
Visitors' Map
Open Business Management Multiple Vulnerabilities PDF Print E-mail
User Rating: / 1
PoorBest 
Wednesday, 07 June 2006

Description:
r0t has reported some vulnerabilities in Open Business Management, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.

1) Input passed to the "new_order" and "order_dir" parameters in company/company_index.php, group/group_index.php, list/list_index.php, and user/user_index.php is not properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

2) Input passed to the "tf_title", "tf_lang", and "tf_year" parameters in publication/publication_index.php, to the "tf_login", "tf_lastname", "tf_email", "tf_desc", and "tf_group" parameters in user/user_index.php, to the "tf_name", "tf_email", and "tf_contact" parameters in list/list_index.php, to the "tf_name", "tf_user", and "tf_email" parameters in group/group_index.php, and to the "tf_name", "tf_phone", "tf_zip", "tf_town", "tf_dateafter", "tf_datebefore", and "tf_cat_code" parameters in company/company_index.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

The vulnerabilities have been reported in version 1.0.3pl1. Other versions may also be affected.

Solution:
Edit the source code to ensure that input is properly sanitised.

Provided and/or discovered by:
r0t

Original Advisory:
http://secunia.com/advisories/20486/


Comments Index (Total Messages: 0)


Post Reply
Name:Guest
Title:
Comment:



Enter this security word

Powered by a Zone-H(ified) version of AkoComment 3.0!


DISCLAIMER: Forum postings are the opinion of the posting author alone, and should not be taken as the opinion of Zone-h. The   author is entirely and solely responsible for all content that he/she uploads, posts, or otherwise transmits via the website. Zone-h is not responsible for such content. However, Zone-h shall have the right, but not the obligation, to delete, move, or edit any content that violates this agreement or is otherwise objectionable as determined by Zone-h in its sole discretion and without notice.
 
< Prev   Next >
[ Back ]
 
Top!
© 2008 Zone-H.org - Unrestricted Information
Joomla! is Free Software released under the GNU/GPL License.
 Top!