Web application abuses : 2532|Gigs <= 1.2.2 Multiple Vulnerabilities

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.800682

Categoría: Web application abuses

Título: 2532|Gigs <= 1.2.2 Multiple Vulnerabilities - Active Check

Resumen: 2532-Gigs is prone to multiple vulnerabilities.

Descripción: Summary:
2532-Gigs is prone to multiple vulnerabilities.

Vulnerability Insight:
- Vulnerability exists in activateuser.php, manage_venues.php,
mini_calendar.php, deleteuser.php, settings.php, and manage_gigs.php files when input passed to
the 'language' parameter is not properly verified before being used to include files via a ..
(dot dot).

- Input passed to the 'username' and 'password' parameters in checkuser.php is not properly
sanitised before being used in SQL queries.

- Error in upload_flyer.php which can be exploited by uploading a file with an executable
extension, then accessing it via a direct request to the file in flyers/.

Vulnerability Impact:
Successful exploitation will allow attacker to cause directory
traversal or SQL injection attacks, and can execute arbitrary code when register_globals is
enabled and magic_quotes_gpc is disabled.

Affected Software/OS:
2532-Gigs version 1.2.2 and prior.

Solution:
No known solution was made available for at least one year
since the disclosure of this vulnerability. Likely none will be provided anymore. General
solution options are to upgrade to a newer release, disable respective features, remove the
product or replace the product by another one.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2008-6901
BugTraq ID: 32911
http://www.securityfocus.com/bid/32911
https://www.exploit-db.com/exploits/7510
http://secunia.com/advisories/26585
XForce ISS Database: 2532gigs-language-file-include(47465)
https://exchange.xforce.ibmcloud.com/vulnerabilities/47465
Common Vulnerability Exposure (CVE) ID: CVE-2008-6902
XForce ISS Database: 2532gigs-uploadflyer-file-upload(47466)
https://exchange.xforce.ibmcloud.com/vulnerabilities/47466
Common Vulnerability Exposure (CVE) ID: CVE-2008-6907
BugTraq ID: 32913
http://www.securityfocus.com/bid/32913
https://www.exploit-db.com/exploits/7511
XForce ISS Database: 2532gigs-checkuser-sql-injection(47491)
https://exchange.xforce.ibmcloud.com/vulnerabilities/47491

Copyright Copyright (C) 2009 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.800682
Categoría:	Web application abuses
Título:	2532\|Gigs <= 1.2.2 Multiple Vulnerabilities - Active Check
Resumen:	2532-Gigs is prone to multiple vulnerabilities.
Descripción:	Summary: 2532-Gigs is prone to multiple vulnerabilities. Vulnerability Insight: - Vulnerability exists in activateuser.php, manage_venues.php, mini_calendar.php, deleteuser.php, settings.php, and manage_gigs.php files when input passed to the 'language' parameter is not properly verified before being used to include files via a .. (dot dot). - Input passed to the 'username' and 'password' parameters in checkuser.php is not properly sanitised before being used in SQL queries. - Error in upload_flyer.php which can be exploited by uploading a file with an executable extension, then accessing it via a direct request to the file in flyers/. Vulnerability Impact: Successful exploitation will allow attacker to cause directory traversal or SQL injection attacks, and can execute arbitrary code when register_globals is enabled and magic_quotes_gpc is disabled. Affected Software/OS: 2532-Gigs version 1.2.2 and prior. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-6901 BugTraq ID: 32911 http://www.securityfocus.com/bid/32911 https://www.exploit-db.com/exploits/7510 http://secunia.com/advisories/26585 XForce ISS Database: 2532gigs-language-file-include(47465) https://exchange.xforce.ibmcloud.com/vulnerabilities/47465 Common Vulnerability Exposure (CVE) ID: CVE-2008-6902 XForce ISS Database: 2532gigs-uploadflyer-file-upload(47466) https://exchange.xforce.ibmcloud.com/vulnerabilities/47466 Common Vulnerability Exposure (CVE) ID: CVE-2008-6907 BugTraq ID: 32913 http://www.securityfocus.com/bid/32913 https://www.exploit-db.com/exploits/7511 XForce ISS Database: 2532gigs-checkuser-sql-injection(47491) https://exchange.xforce.ibmcloud.com/vulnerabilities/47491
Copyright	Copyright (C) 2009 Greenbone AG