punBB < 1.2.2 Multiple SQL Injection and Authentication Bypass Vulnerabilities
High Nessus Network Monitor Plugin ID 2651
SynopsisThe remote web server contains a script that is vulnerable to a SQL injection attack.
DescriptionThe remote host is running punBB, a web-based bulletin board. punBB works in conjunction with a SQL database. This version of punBB is vulnerable to several SQL injection flaws as well as an authentication bypass flaw. An attacker exploiting these flaws would only need to be able to send HTTP traffic to the web server. A successful SQL injection attack would give the attacker the ability to execute commands on the SQL server, view data, and modify data. A successful authentication bypass attack would give the attacker the ability to perform administrative tasks on the web server.
SolutionUpgrade to version 1.2.2 or higher.