Ravens PHP Scripts

WordPress WP Photo Album Plugin *photo* SQL Injection
Date: Wednesday, February 20, 2008 @ 18:15:38 PST
Topic: Security


SECUNIA ADVISORY ID: SA28988

VERIFY ADVISORY: http://secunia.com/advisories/28988/

CRITICAL: Moderately critical

IMPACT: Manipulation of data

SOFTWARE: WP Photo Album (WPPA) 1.x (plugin for WordPress) http://secunia.com/product/17641/

DESCRIPTION: A vulnerability has been reported in the WP Photo Album (WPPA) plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.



Input passed to the "photo" parameter in the WordPress installation's index.php script is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. The vulnerability is reported in version 1.0. Prior versions may also be affected.

SOLUTION: Update to version 1.1.

PROVIDED AND/OR DISCOVERED BY: Reported by S@BUN

ORIGINAL ADVISORY: http://milw0rm.com/exploits/5135






This article comes from Ravens PHP Scripts
http://www.ravenphpscripts.com

The URL for this story is:
http://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=3246