vendor:
EsForum
by:
Unknown
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: EsForum
Affected Version From: EsForum 3.0
Affected Version To: EsForum 3.0
Patch Exists: NO
Related CWE: CVE-2007-2438
CPE: a:esforum:esforum:3.0
Platforms Tested:
2007
EsForum 3.0 SQL Injection Vulnerability
The vulnerability allows an attacker to inject arbitrary SQL code into the 'idsalon' parameter of the 'forum.php' page, leading to unauthorized access to the database and potentially compromising user information. The exploit retrieves the hashed passwords of all users from the 'esforum_users' table where the 'user_id' is 1.
Mitigation:
To mitigate this vulnerability, the developer should implement proper input validation and parameterized queries to prevent SQL injection attacks.