phpBB Fetch All < 2.0.12 Multiple Scripts SQL Injection

high Nessus Plugin ID 14226

Synopsis

A remote web application is vulnerable to SQL injection.

Description

The remote host is running a version of phpBB FetchAll older than 2.0.12.

It is reported that this version of phpBB Fetch All is susceptible to a SQL injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input before using it in a SQL query.

The successful exploitation of this vulnerability depends on the implementation of the web application that includes phpBB Fetch All as a component. It may or may not be possible to effectively pass malicious SQL statements to the underlying function.

Successful exploitation could result in compromise of the application, disclosure or modification of data or may permit an attacker to exploit vulnerabilities in the underlying database implementation.

Solution

Upgrade to phpBB Fetch All 2.0.12 or later.

Plugin Details

Severity: High

ID: 14226

File Name: phpbb_fetch_all_sql_injection.nasl

Version: 1.25

Type: remote

Family: CGI abuses

Published: 8/9/2004

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Required KB Items: www/phpBB

Exploit Available: true

Exploit Ease: No exploit is required

Vulnerability Publication Date: 8/7/2004

Reference Information

BID: 10868, 10893