LinPHA <= 1.3.1 (new_images.php) SQL Injection Vulnerability

Description:

LinPHA contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the /include/img_view.class.php script not properly sanitizing user-supplied input passed via the ‘order’ parameter to the include/img_view.class.php script. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

References:

• CVE-2007-4053
• BID-25119
• EDB-4242

Disclosure Date:

July 29, 2007