Sign-up

ID

VAR-200610-0526


CVE

CVE-2006-5208


TITLE

PHP Classifieds catid_search and catid variable remote SQL injection vulnerability

Trust: 1.2

sources: CNVD: CNVD-2006-7679 // CNNVD: CNNVD-200610-140

DESCRIPTION

Multiple SQL injection vulnerabilities in PHP Classifieds 7.1 allow remote attackers to execute arbitrary SQL commands via (1) the catid_search parameter in search.php and (2) the catid parameter in index.php. PHP Classifieds is a web-based directory classification program written in PHP.  PHP Classifieds lacks proper and sufficient filtering of the parameters submitted by users, and remote attackers can use this vulnerability to unauthorizedly manipulate the database. Remote attackers can gain unauthorized access to the database by inserting specific SQL commands into the input data. A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation. ---------------------------------------------------------------------- Want to work within IT-Security? Secunia is expanding its team of highly skilled security experts. We will help with relocation and obtaining a work permit. Currently the following type of positions are available: http://secunia.com/hardcore_disassembler_and_reverse_engineer/ ---------------------------------------------------------------------- TITLE: PHP Classifieds "catid" and "catid_search" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA22264 VERIFY ADVISORY: http://secunia.com/advisories/22264/ CRITICAL: Moderately critical IMPACT: Manipulation of data WHERE: >From remote SOFTWARE: PHP Classifieds 7.x http://secunia.com/product/12226/ PHP Classifieds 6.x http://secunia.com/product/8084/ DESCRIPTION: Kzar has discovered some vulnerabilities in PHP Classifieds, which can be exploited by malicious people to conduct SQL injection attacks. This can be exploited to manipulate SQL queries by inserting arbitrary SQL code. The vulnerabilities have been confirmed in version 7.1. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: Kzar ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 2.52

sources: NVD: CVE-2006-5208 // JVNDB: JVNDB-2006-001358 // CNVD: CNVD-2006-7679 // BID: 20359 // PACKETSTORM: 50762

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2006-7679

AFFECTED PRODUCTS

vendor:deltascriptsmodel:php classifiedsscope:eqversion:7.1

Trust: 2.7

vendor:nonemodel: - scope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2006-7679 // BID: 20359 // JVNDB: JVNDB-2006-001358 // CNNVD: CNNVD-200610-140 // NVD: CVE-2006-5208

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2006-5208
value: HIGH

Trust: 1.0

NVD: CVE-2006-5208
value: HIGH

Trust: 0.8

CNNVD: CNNVD-200610-140
value: HIGH

Trust: 0.6

nvd@nist.gov: CVE-2006-5208
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

sources: JVNDB: JVNDB-2006-001358 // CNNVD: CNNVD-200610-140 // NVD: CVE-2006-5208

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2006-5208

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200610-140

TYPE

sql injection

Trust: 0.7

sources: PACKETSTORM: 50762 // CNNVD: CNNVD-200610-140

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2006-001358

PATCH
title:Top Pageurl:http://www.deltascripts.com/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2006-001358

EXTERNAL IDS
db:NVDid:CVE-2006-5208
Trust: 3.0
db:BIDid:20359
Trust: 1.9
db:SECUNIAid:22264
Trust: 1.7
db:EXPLOIT-DBid:2479
Trust: 1.6
db:VUPENid:ADV-2006-3924
Trust: 1.6
db:JVNDBid:JVNDB-2006-001358
Trust: 0.8
db:CNVDid:CNVD-2006-7679
Trust: 0.6
db:XFid:29354
Trust: 0.6
db:MILW0RMid:2479
Trust: 0.6
db:CNNVDid:CNNVD-200610-140
Trust: 0.6
db:PACKETSTORMid:50762
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2006-7679 // 
            
            
            
            BID: 20359 // 
            
            
            
            JVNDB: JVNDB-2006-001358 // 
            
            
            
            PACKETSTORM: 50762 // 
            
            
            
            CNNVD: CNNVD-200610-140 // 
            
            
            
            NVD: CVE-2006-5208

REFERENCES
url:http://www.securityfocus.com/bid/20359
Trust: 1.6
url:http://secunia.com/advisories/22264
Trust: 1.6
url:http://kzar.co.uk/exploits/phpclassifieds_exploit
Trust: 1.6
url:http://www.vupen.com/english/advisories/2006/3924
Trust: 1.0
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/29354
Trust: 1.0
url:https://www.exploit-db.com/exploits/2479
Trust: 1.0
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-5208
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-5208
Trust: 0.8
url:http://xforce.iss.net/xforce/xfdb/29354
Trust: 0.6
url:http://www.milw0rm.com/exploits/2479
Trust: 0.6
url:http://www.frsirt.com/english/advisories/2006/3924
Trust: 0.6
url:http://milw0rm.com/exploits/2479
Trust: 0.6
url:http://www.deltascripts.com/phpclassifieds/
Trust: 0.3
url:http://secunia.com/secunia_security_advisories/
Trust: 0.1
url:http://secunia.com/hardcore_disassembler_and_reverse_engineer/
Trust: 0.1
url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Trust: 0.1
url:http://secunia.com/product/8084/
Trust: 0.1
url:http://secunia.com/about_secunia_advisories/
Trust: 0.1
url:http://secunia.com/product/12226/
Trust: 0.1
url:http://secunia.com/advisories/22264/
Trust: 0.1
sources:
            
            
            BID: 20359 // 
            
            
            
            JVNDB: JVNDB-2006-001358 // 
            
            
            
            PACKETSTORM: 50762 // 
            
            
            
            CNNVD: CNNVD-200610-140 // 
            
            
            
            NVD: CVE-2006-5208

CREDITS
Kzar is credited with the discovery of these vulnerabilities.
Trust: 0.3
sources:
            
            
            BID: 20359

SOURCES
db:CNVDid:CNVD-2006-7679
db:BIDid:20359
db:JVNDBid:JVNDB-2006-001358
db:PACKETSTORMid:50762
db:CNNVDid:CNNVD-200610-140
db:NVDid:CVE-2006-5208

LAST UPDATE DATE
2024-08-14T13:39:33.526000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2006-7679date:2006-10-06T00:00:00
db:BIDid:20359date:2006-10-05T21:05:00
db:JVNDBid:JVNDB-2006-001358date:2012-06-26T00:00:00
db:CNNVDid:CNNVD-200610-140date:2006-10-23T00:00:00
db:NVDid:CVE-2006-5208date:2017-10-19T01:29:30.830

SOURCES RELEASE DATE
db:CNVDid:CNVD-2006-7679date:2006-10-06T00:00:00
db:BIDid:20359date:2006-10-05T00:00:00
db:JVNDBid:JVNDB-2006-001358date:2012-06-26T00:00:00
db:PACKETSTORMid:50762date:2006-10-09T23:01:07
db:CNNVDid:CNNVD-200610-140date:2006-10-10T00:00:00
db:NVDid:CVE-2006-5208date:2006-10-10T04:06:00