SPIP spip_access_doc.php3 SQL injection
| spip-access-doc-sql-injection (24599) |  Medium Risk |
Description:
SPIP is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the spip_access_doc.php3 script using 'file' parameter, which could allow the attacker to add, modify, or delete information in the back-end database.
Platforms Affected:
- SPIP Project, SPIP 1.8.2g and prior
Remedy:
Upgrade to the latest version of SPIP (1.8.2-g or later), available from the SPIP Web site. See References.
Consequences:
Data Manipulation
References:
- rgod Web page, SPIP <= 1.8.2g remote commands execution through arbitrary local inclusion / sql injection at http://retrogod.altervista.org/spip_182g_shell_inj_xpl.html.
- SPIP Web site, SPIP at http://www.spip.net/en.
- BID-16458: SPIP Multiple SQL Injection Vulnerabilities
- BID-16551: SPIP Spip_acces_doc.PHP SQL Injection Vulnerability
- CVE-2006-0626: SQL injection vulnerability in spip_acces_doc.php3 in SPIP 1.8.2g and earlier allows remote attackers to execute arbitrary SQL commands via the file parameter.
- OSVDB ID: 23087: SPIP spip_acces_doc.php3 file Variable SQL Injection
- SA18676: SPIP Cross-Site Scripting and SQL Injection Vulnerabilities
- SECTRACK ID: 1015602: SPIP Include File Bug in `spip_rss.php` Lets Remote Users Execute Arbitrary Code
- VUPEN/ADV-2006-0483: SPIP spip_log and include_local Remote Code Injection Vulnerabilities
Reported:
Feb 08, 2006
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.
For corrections or additions please email xforce@iss.net