sBlog SQL Injection and Path Disclosure Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: sBlog SQL Injection and Path Disclosure Vulnerability
From: admin@xxxxxxxxxxxxxxx
Date: 2 May 2006 11:16:12 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

Summary:
Software: sBlog 0.7.2
Site: http://servous.se/
Description: sBlog is a simple and new PHP Blog. 

Issue: Conducting a security benchmark on this open source software we have 
found that most of the versions of this software is prone to SQL Injection 
attack through which an attacker can trigger back sensitive information as well 
as gain administrative priviledges. The sql injection also discloses path 
information which may prove additional aid to the attacker.An unauthenticated 
attacker may execute arbitrary SQL statements on the web. This may compromise 
the database and expose sensitive information.


========================================

PROOF OF CONCEPT  : http://www.subjectzero.net/research/sblog.htm

========================================

Prev by Date: geoBlog Mutiple XSS Vulnerability
Next by Date: Cmscout <= V1.10 multiple XSS attack vectors
Previous by thread: geoBlog Mutiple XSS Vulnerability
Next by thread: Cmscout <= V1.10 multiple XSS attack vectors
Index(es):
- Date
- Thread