Family Connections <= 2.1.3 Multiple Remote Vulnerabilities
Many fields are not properly sanitised and some checks can be bypassed. All fields that were tested are vulnerable to Blind SQL Injection. An attacker may try to exploit this vulnerability using the full path disclosure released by the MySQL error to write a file into the remote file system, using as destination path the gallery directories, where the permissions must be setted to 777. When we want to write a module to upload a file, we must check the file extension. The application doesn't check the file extension, so an attacker can upload a malicious file with a double extension like .php.jpg. The application also doesn't check the file extension, so an attacker can upload a malicious file with a double extension like .php.jpg.