postid SQL Injection in Social Share

Summary

Vulnerability
postid SQL Injection in Social Share
Discovered
2010.12.08
Last Update
n/a n/a
ID
EV0166
CVE
n/a
Risk Level
medium
Type
SQL Injection
Status
Unpatched. Vendor notified. No reply from developer(s).
Vendor
n/a
Vulnerable Software
Social Share (http://sourceforge.net/projects/socialshare/)
Version
2010-06-05
PoC/Exploit
Available
Solution
Not available
Discovered by
Aliaksandr Hartsuyeu (eVuln.com)

Description

SQL Injection found in Social Share (http://sourceforge.net/projects/socialshare/) script.

SQL Injection
It is possible to inject arbitrary SQL query using postid parameter in postview.php script.

Parameter postid used in SQL query without any sanitation.

Condition: magic_quotes: off

PoC/Exploit

SQL Injection PoC code.

SQL Injection example: http://website/socialshare/postview.php? postid=-1 union select 1,2,3,4,5,6,7,8,9,10#

Solution.

Solution for "postid SQL Injection in Social Share" is not available. Check vendor's website for updates.

Order Source Code Testing made by eVuln team

Protect against hacker attacks by source code analysis of a site or web application made by eVuln team.The work will be done by specialists in web security.

Advisories by vuln type

Website Monitoring

Daily malware scanning. Allows to receive alerts about security problems in your website.
Details >>

Malicious redirects detected?

eVuln team will eliminate the reason, clean your website and monitor it.
Details >>

Website blacklisted?

eVuln team will clean your website, discover and fix security holes, remove from blacklists.
Details >>