PHP-Quick-Arcade 3.0.21 cross site scripting and remote SQL injection

2010-04-28 / 2010-04-29
Credit: ITSecTeam
Risk: High
Local: No
Remote: Yes
CVE: CVE-2010-1661 | CVE-2010-1662
CWE: CWE-89

PHP Quick Arcade 3.0.21 Multiple Vulnerabilites ----------------------------------------------------------- #Title: PHP-Quick-Arcade 3.0.21 Multiple Vulnerabilites #Vendor: http://quickarcade.jcink.com/ ----------------------------------------------------------- #AUTHOR: ITSecTeam #Email: Bug@ITSecTeam.com #Website: http://www.itsecteam.com #Forum : http://forum.ITSecTeam.com #Original Advisory: www.ITSecTeam.com/en/vulnerabilities/vulnerability47.htm #Thanks: Pejvak,M3hr@n.s,r3dm0v3,am!rkh@n ----------------------------------------------------------- # POC 1 ----------------------------------------------------------- www.Site.com/Arcade.php Send Your Query With Cookie => phpqa_user_c phpqa_user_c= Sql Injection Can Use tamper data in mozila ----------------------------------------------------------- # POC 2 ----------------------------------------------------------- This Bug Worked With Register_Global = On www.Site.com/acpmoderate.php?id=Sql Injection ----------------------------------------------------------- # POC 3 ----------------------------------------------------------- Cross Site Scripting (XSS) www.Site.com/acpmoderate.php?serv=Xss Code

References:

http://xforce.iss.net/xforce/xfdb/58184
http://www.vupen.com/english/advisories/2010/1013
http://www.securityfocus.com/bid/39733
http://www.exploit-db.com/exploits/12416
http://packetstormsecurity.org/1004-exploits/phpquickarcade-sqlxss.txt


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top