vendor:
myStats
by:
JosS
7.5
CVSS
HIGH
Break System Block IP & SQL Injection
89, 89
CWE
Product Name: myStats
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009
myStats (hits.php) Multiple Remote Vulnerabilities Exploit
The vulnerability exists due to insufficient sanitization of user-supplied input in the 'sortby' parameter of the 'hits.php' script. A remote attacker can send a specially crafted HTTP request with a malicious 'X-Forwarded-For' header to bypass the IP block and execute arbitrary SQL commands in the application's database.
Mitigation:
Input validation should be used to ensure that untrusted data is not used to modify the intended logic of the application. Additionally, the application should use an appropriate escaping scheme when displaying data that is retrieved from the database.