ChurchInfo usercheck.php path disclosure

churchinfo-path-disclosure (21648) The risk level is classified as LowLow Risk

Description:

ChurchInfo could allow a remote attacker to obtain sensitive information. A remote attacker can send a specially-crafted URL request to the usercheck.php script to cause the full installation path of ChurchInfo to be disclosed.


Consequences:

Obtain Information

Remedy:

Upgrade to the latest version of ChurchInfo (1.2.9 or later), available from SourceForge.net. See References.

References:

  • BugTraq Mailing List, 2005-08-01 15:04:52: ChurchInfo Multiple Vulnerabilities.
  • SourceForge.net: Project: ChurchInfo: Summary.
  • CVE-2005-2474: ChurchInfo allows remote attackers to execute obtain sensitive information via the PersonID parameter to (1) PersonView.php, (2) MemberRoleChange.php, (3) PropertyAssign.php, (4) WhyCameEditor.php, (5) GroupPropsEditor.php, (6) Reports/PDFLabel.php, or (7) UserDelete.php, an invalid Number parameter to (8) SelectList.php or (9) SelectDelete.php, GroupID parameter to (10) GroupView.php, (11) GroupMemberList.php, (12) MemberRoleChange.php, (13) GroupDelete.php, (14) /Reports/ClassAttendance.php, or (15) /Reports/GroupReport.php, (16) PropertyID parameter to PropertyEditor.php, FamilyID parameter to (17) Canvas05Editor.php, (18) CanvasEditor.php, or (19) FamilyView.php, or (20) PledgeID parameter to PledgeDetails.php, which reveal the path in an error message.
  • OSVDB ID: 18425: ChurchInfo SelectDelete.php Number Variable Path Disclosure
  • OSVDB ID: 18426: ChurchInfo SelectList.php Number Variable Path Disclosure
  • OSVDB ID: 18429: ChurchInfo Canvas05Editor.php FamilyID Variable Path Disclosure
  • OSVDB ID: 18430: ChurchInfo CanvasEditor.php FamilyID Variable Path Disclosure
  • OSVDB ID: 18431: ChurchInfo ClassAttendance.php GroupID Variable Path Disclosure
  • OSVDB ID: 18432: ChurchInfo ClassList.php GroupID Variable Path Disclosure
  • OSVDB ID: 18433: ChurchInfo ConfirmLabels.php GroupID Variable Path Disclosure
  • OSVDB ID: 18434: ChurchInfo DirectoryReport.php GroupID Variable Path Disclosure
  • OSVDB ID: 18435: ChurchInfo FamilyView.php FamilyID Variable Path Disclosure
  • OSVDB ID: 18436: ChurchInfo GroupPropsFormRowOps.php GroupID Variable Path Disclosure
  • OSVDB ID: 18437: ChurchInfo NewsLetterLabels.php GroupID Variable Path Disclosure
  • OSVDB ID: 18438: ChurchInfo PledgeDetails.php PledgeID Variable Path Disclosure
  • OSVDB ID: 18439: ChurchInfo PropertyEditor.php PropertyID Variable Path Disclosure
  • OSVDB ID: 18450: ChurchInfo UserDelete.php Path Disclosure
  • SA16292: ChurchInfo SQL Injection Vulnerabilities
  • SECTRACK ID: 1014617: ChurchInfo Input Validation Holes Permit SQL Injection

Platforms Affected:

  • ChurchInfo ChurchInfo 1.2.2

Reported:

Aug 02, 2005

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page