Detections
Analytics
Mambo Open Source usercookie Parameter SQL Injection
medium Nessus Plugin ID 22509
Language:
Synopsis
The remote web server contains a PHP application that is prone to a SQL injection attack.Description
The remote installation of Mambo Open Source fails to sanitize input to the 'usercookie' cookie array before using it in a database query to authenticate a user. Provided PHP's 'magic_quotes_gpc' setting is disabled, an attacker may be able to exploit this issue to manipulate database queries and, for example, bypass authentication and gain administrative access to the affected application.Solution
Unknown at this time.See Also
http://www.gulftech.org/?node=research&article_id=00116-10042006
Plugin Details
Severity: Medium
ID: 22509
File Name: mambo_usercookie_sql_injection.nasl
Version: 1.21
Type: remote
Family: CGI abuses
Published: 10/6/2006
Updated: 6/1/2022
Configuration: Enable thorough checks
Supported Sensors: Nessus
Vulnerability Information
Required KB Items: www/mambo_mos
Excluded KB Items: Settings/disable_cgi_scanning
Exploit Ease: No known exploits are available
Reference Information
BID: 20366