Lyris ListManager 5.0 through 8.9a allows remote attackers to add "ORDER BY" columns to SQL queries via unusual whitespace characters in the orderby parameter, such as (1) newlines and (2) 0xFF (ASCII 255) characters, which are interpreted as whitespace.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 00:03
Type | Values Removed | Values Added |
---|---|---|
References | () http://archives.neohapsis.com/archives/fulldisclosure/2005-12/0349.html - | |
References | () http://metasploit.com/research/vulns/lyris_listmanager/ - Vendor Advisory | |
References | () http://secunia.com/advisories/17943 - Patch, Vendor Advisory | |
References | () http://www.osvdb.org/21549 - Patch | |
References | () http://www.securityfocus.com/archive/1/419077/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/15787 - Patch | |
References | () http://www.vupen.com/english/advisories/2005/2820 - |
Information
Published : 2005-12-10 11:03
Updated : 2024-11-21 00:03
NVD link : CVE-2005-4144
Mitre link : CVE-2005-4144
CVE.ORG link : CVE-2005-4144
JSON object : View
Products Affected
lyris
- list_manager
CWE