RSS-aggregator Multiple vulnerabilities

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: RSS-aggregator Multiple vulnerabilities
From: Sylvain <sylvain.thual@xxxxxxxxxxxxxxxxx>
Date: Mon, 30 Jun 2008 17:59:48 +0200
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Organization: Click Internet
Resent-cc: recipient list not shown: ;
Resent-date: Mon, 30 Jun 2008 17:58:58 +0200 (CEST)
Resent-from: Sylvain <sylvain.thual@xxxxxxxxxxxxxxxxx>
Resent-message-id: <20080630155858.2217E1C000BD@xxxxxxxxxxxxxxxxxxx>

----------------
*RSS-aggregator*
----------------

Informations :
************** 
Langage : PHP
Version : 1.0
Website : http://www.rss-aggregator.com
Problems : Multiple vulnerabilities


Description:
************
RSS-aggregator is a tool, for Webmaster, allowing to display several feeds RSS 
on a single page. 

Details :
*********
-----------------
**SQL injection**
-----------------
Multiple sql injections:
http://localhost/admin/fonctions/supprimer_flux.php?IdFlux=[SQL injection]
http://localhost/admin/fonctions/supprimer_tag.php?IdTag=[SQL injection]

------------------------------
** Access to admin functions**
------------------------------
We can easily access to all admin functions directly from files in 
/admin/fonctions/ directory.

Examples:
http://localhost/admin/fonctions/supprimer_flux.php?IdFlux=5
http://localhost/admin/fonctions/modifier_tps_rafraich.php?TpsRafraich=500

        

Credits:
********
Autor : Sylvain THUAL 
E-mail : contact@xxxxxxxxxxxxxxxxx
Website : http://www.click-internet.fr

Prev by Date: [security bulletin] HPSBMA02338 SSRT080024, SSRT080041 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code, Denial of Service (DoS)
Next by Date: Re: Rhythmbox Vulnerability
Previous by thread: [security bulletin] HPSBMA02338 SSRT080024, SSRT080041 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code, Denial of Service (DoS)
Next by thread: Endless loop in Soldner 33724
Index(es):
- Date
- Thread