CVE-2010-1109
published 2010-03-25CVE-2010-1109: Multiple SQL injection vulnerabilities in index.php in phpMySport 1.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL…
PriorityP340medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
0.95%
56.8th percentile
Multiple SQL injection vulnerabilities in index.php in phpMySport 1.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) v2 parameter in a member view action, (2) v1 parameter in a news action, (3) v1 parameter in an information action, (4) v2 parameter in a team view action, (5) v2 parameter in a club view action, or (6) v2 parameter in a matches view action.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| djayp | phpmysport | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
BugTracker.NET 3.4.4 - Multiple Vulnerabilities
exploitdb·2010-12-01·CVSS 3.5
CVE-2010-3267 [LOW] BugTracker.NET 3.4.4 - Multiple Vulnerabilities
BugTracker.NET 3.4.4 - Multiple Vulnerabilities
---
Core Security Technologies - CoreLabs Advisory
http://corelabs.coresecurity.com/
Multiple vulnerabilities in BugTracker.Net
1. *Advisory Information*
Title: Multiple vulnerabilities in BugTracker.Net
Advisory Id: CORE-2010-1109
Advisory URL:
[http://www.coresecurity.com/content/multiple-vulnerabilities-in-bugtracker]
Date published: 2010-11-30
Date of last update: 2010-11-30
Vendors contacted: BugTracker.NET team
Release mode: Coordinated release
2. *Vulnerability Information*
Class: Cross site scripting [CWE-79], SQL injection [CWE-89]
Impact: Code execution
Remotely Exploitable: Yes
Locally Exploitable: No
CVE Name: CVE-2010-3266, CVE-2010-3267
Bugtraq ID: N/A
3. *Vulnerability Description*
BugTracker.NET [1][2] is an open-s
Exploit-DB
phpmysport 1.4 - Cross-Site Scripting / SQL Injection
exploitdb·2009-03-12
CVE-2010-1109 phpmysport 1.4 - Cross-Site Scripting / SQL Injection
phpmysport 1.4 - Cross-Site Scripting / SQL Injection
---
#####################################################################
# + PhpMySport v. 1.4 Multiple Remote Vulnerabilities (XSS\SQL) + #
# ~ Discovered by XaDoS - xados [at] hotmail [dot] it ~ #
# ~ Th4nKs AlpHaNiX ~ #
#####################################################################
-Product site: http://phpmysport.sourceforge.net
-Version vuln: 1.4(latest) and maybe >[$QL]>[XSS]alert(document.cookie)
or
">
########::D&m0::########
[SQL]:
http://olmobasket.altervista.org/phpmysport/index.php?r=membro&v1=member_list
Write in the search_member form the right query:
-999'/**/union/**/all/**/select/**/1,2,3,4,5,6,7,concat(member_firstname,0x3a,member_pass,0x3a,member_email),9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,2
No writeups or analysis indexed.
http://packetstormsecurity.org/1001-exploits/phpmysport-sqlaccess.txthttp://phpmysport.sourceforge.net/en/forum/bugs/sujet_2851.htmlhttp://secunia.com/advisories/34279http://www.securityfocus.com/bid/37856https://exchange.xforce.ibmcloud.com/vulnerabilities/55762http://packetstormsecurity.org/1001-exploits/phpmysport-sqlaccess.txthttp://phpmysport.sourceforge.net/en/forum/bugs/sujet_2851.htmlhttp://secunia.com/advisories/34279http://www.securityfocus.com/bid/37856https://exchange.xforce.ibmcloud.com/vulnerabilities/55762
2010-03-25
Published