ttocskcaj Posted September 4, 2012 Share Posted September 4, 2012 Can a few people please check this registration/login page for SQL injection or any other vulnerabilities please? http://dev.minecms.org/account/register http://dev.minecms.org/account/login Link to profile: http://dev.minecms.org/phpfreaks.txt Link to comment Share on other sites More sharing options...
darkfreaks Posted September 8, 2012 Share Posted September 8, 2012 Vulnerability description This script is possibly vulnerable to SQL Injection attacks. SQL injection is a vulnerability that allows an attacker to alter backend SQL statements by manipulating the user input. An SQL injection occurs when web applications accept user input that is directly placed into a SQL statement and doesn't properly filter out dangerous characters. This is one of the most common application layer attacks currently being used on the Internet. Despite the fact that it is relatively easy to protect against, there is a large number of web applications vulnerable. Affected items /topic/view/ The impact of this vulnerability An attacker may execute arbitrary SQL statements on the vulnerable system. This may compromise the integrity of your database and/or expose sensitive information. Depending on the back-end database in use, SQL injection vulnerabilities lead to varying levels of data/system access for the attacker. It may be possible to not only manipulate existing queries, but to UNION in arbitrary data, use subselects, or append additional queries. In some cases, it may be possible to read in or write out to files, or to execute shell commands on the underlying operating system. Certain SQL Servers such as Microsoft SQL Server contain stored and extended procedures (database server functions). If an attacker can obtain access to these procedures it may be possible to compromise the entire machine. How to fix this vulnerability Your script should filter metacharacters from user input. Links: SQL injection walkthrough SQL Injection example attacks OWASP injection flaws OWASP protecting against XSS and SQL injection Error message on page Vulnerability description This page contains an error/warning message that may disclose sensitive information.The message can also contain the location of the file that produced the unhandled exception. This may be a false positive if the error message is found in documentation pages. Affected items /topic/view/1I7J7okOzH.jsp The impact of this vulnerability The error messages may disclose sensitive information. This information can be used to launch further attacks. How to fix this vulnerability Review the source code for this script. Link to comment Share on other sites More sharing options...
darkfreaks Posted September 11, 2012 Share Posted September 11, 2012 http://lmgtfy.com/?q=htmlpurifier+validation+php better safe than sorry Link to comment Share on other sites More sharing options...
Recommended Posts