PhpBazar 'classified.php' SQL Injection Vulnerability Network Vulnerability

Summary

The host is running phpBazar and is prone to SQL Injection vulnerability.

Impact

Successful exploitation could allow execution of arbitrary SQL commands in the affected application. Impact Level: Application

Solution

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.

Insight

The flaw is due to error in 'classified.php' which can be exploited to cause SQL injection via the 'catid' parameter, and 'admin/admin.php' which allows to obtain access to the admin control panel via a direct request.

Affected

phpBazar version 2.1.1 and prior.

References

http://packetstormsecurity.org/0911-exploits/phpbazar211fix-sql.txt
http://www.exploit-db.com/exploits/10245
http://xforce.iss.net/xforce/xfdb/54447

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4221, CVE-2009-4222

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Atutor AContent Multiple SQL Injection and XSS Vulnerabilities
Andy's PHP Knowledgebase 'step5.php' Remote PHP Code Execution Vulnerability
Adobe ColdFusion Directory Traversal Vulnerability
Apple Safari PDF Javascript Security Bypass Bypass Vulnerability
Apple Safari RSS Feed Information Disclosure Vulnerability

phpBazar 'classified.php' SQL Injection Vulnerability

Take action and discover your vulnerabilities