Simple Document Management System "login" and "pass" SQL Injection
Report ID:
SA32502
Source:
Secunia
Date of Discovery:
05.11.2008
Criticality:
Moderate
Affects:
Simple Document Management System (SDMS) 1.x
Compromise From:
From remote
Compromise Type:
Exposure of sensitive information
Manipulation of data
Summary
A vulnerability in Simple Document Management System (SDMS)has discovered, which can be exploited by malicious people to conduct SQL injection attacks.
Detailed Description
A vulnerability in Simple Document Management System (SDMS)has discovered, which can be exploited by malicious people to conduct SQL injection attacks.
Input passed to the "login" and "pass" parameters in login.php is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
These vulnerabilities are confirmed in versions 1.1.4 and 1.1.5. Other versions may also be affected.
Solution
Edit the source code to ensure that input is properly sanitised.