Description - Multiple XSS and SQL Injection in aWebBB

Multiple Vulnerabilities found in aWebBB script.

Exploit
Available
Solution
Not available - check vendor's website

1. Multiple Cross-Site Scripting Vulnerabilities.

Vulnerable Scripts:
post.php
register.php
editac.php

Parameters tname(post.php), fpost(post.php), fullname(editac.php), emailadd(editac.php), country(editac.php), sig(editac.php), otherav(editac.php), fullname(register.php), emailadd(register.php), country(register.php) are not properly sanitized. All BBCodes are not properly sanitized too.
This can be used to post arbitrary HTML or web script code.


2. Multiple SQL Injections.

Vulnerable scripts:
accounts.php
changep.php
dpost.php ($_GET[p])
editac.php
feedback.php
fpass.php
list.php ($_GET[c])
login.php
ndis.php id,c
post.php
reply.php
reply_log.php
search.php q


Parameters $Username(accounts.php, changep.php, editac.php, feedback.php, fpass.php, login.php, post.php, reply.php, reply_log.php), p(dpost.php), c(list.php,ndis.php), q(search.php) are not properly sanitized before being used in SQL queries. This can be used to make any SQL query by injecting arbitrary SQL code.

Condition: magic_quotes_gpc = off

Order Source Code Analysis made by eVuln team

Protect your site by source code analysis of a website made by Aliaksandr Hartsuyeu.The task will be done by experts in web application security.

Advisories by vuln type