header-logo
Suggest Exploit
vendor:
phpBugTracker
by:
7.5
CVSS
HIGH
SQL Injection, Cross-Site Scripting, HTML Injection
89, 79, 80
CWE
Product Name: phpBugTracker
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

Multiple Input Validation Vulnerabilities in phpBugTracker

phpBugTracker is prone to multiple input validation vulnerabilities, including SQL injection, cross-site scripting, and HTML injection. These vulnerabilities are a result of the application failing to properly sanitize user-supplied input. The SQL injection vulnerabilities can allow remote attackers to manipulate query logic, potentially leading to unauthorized access to sensitive information or database corruption. The cross-site scripting and HTML injection vulnerabilities can allow attackers to execute arbitrary script code in the browser of unsuspecting users, potentially stealing authentication credentials and other sensitive information.

Mitigation:

To mitigate these vulnerabilities, it is recommended to implement proper input validation and sanitization techniques. This includes using parameterized queries or prepared statements to prevent SQL injection, and encoding/escaping user-supplied data to prevent cross-site scripting and HTML injection. Regular security updates and patches should also be applied to the phpBugTracker application.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/10153/info

Reportedly phpBugTracker contains multiple input validation vulnerabilities; it is prone to multiple SQL injection, cross-site scripting and HTML injection issues. These issues are all due to a failure of the application to properly sanitize user supplied input.

The SQL injection issues may allow a remote attacker to manipulate query logic, potentially leading to unauthorized access to sensitive information such as the administrator password hash or corruption of database data. SQL injection attacks may also potentially be used to exploit latent vulnerabilities in the underlying database implementation.

The cross-site scripting and HTML injection issues may allow an attacker to execute arbitrary script code in the browser of an unsuspecting user. It may be possible to steal the unsuspecting user's cookie-based authentication credentials, as well as other sensitive information. Other attacks may also be possible.

http://www.example.com/query.php?page=2&order=severity.sort_order&sort=[SQL]
http://www.example.com/query.php?page=2&order=[SQL]
http://www.example.com/query.php?page=[SQL]
http://www.example.com/query.php?op=delquery&queryid=[SQL]&form=simple
http://www.example.com/query.php?projects=[SQL]&op=doquery