SQL Injection Vulnerability in TankLogger

Summary

Vulnerability
SQL Injection Vulnerability in TankLogger
Discovered
2006.01.11
Last Update
2006.01.16 Solution added
ID
EV0026
CVE
CVE-2006-0209
Risk Level
medium
Type
SQL Injection
Status
Patched
Vendor
n/a
Vulnerable Software
TankLogger (http://tanklogger.sourceforge.net/)
Version
2.4
PoC/Exploit
Available
Solution
Available
Discovered by
Aliaksandr Hartsuyeu (eVuln.com)

Description

SQL Injection found in TankLogger (http://tanklogger.sourceforge.net/) script.

Vulnerable script: general_functions.php

Variables $livestock_id tank_id isn't properly sanitized before being used in a SQL query. This can be used to make any SQL query by injecting arbitrary SQL code.

Condition: magic_quotes_gpc: off

PoC/Exploit

SQL Injection Example:
http://host/exp/tanklogger/showInfo.php? livestock_id=99'%20union%20select%201,2,3,4,5,6,7,8,9/*

Solution.

The author of TankLogger notified that problem was fixed in TankLogger v2.5

Solution:

Install or Upgrade to version 2.5
http://sourceforge.net/projects/tanklogger/

Order Source Code Audit

Check your website by source code review of your site done by eVuln team.The work will be done by experts in web security.

Advisories by vuln type

Website Monitoring

Daily malware scanning. Allows to receive alerts about security problems in your website.
Details >>

Malicious redirects detected?

eVuln team will eliminate the reason, clean your website and monitor it.
Details >>

Website blacklisted?

eVuln team will clean your website, discover and fix security holes, remove from blacklists.
Details >>