LinPHA <= 1.3.1 (new_images.php) SQL Injection Vulnerability


LinPHA contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the /include/img_view.class.php script not properly sanitizing user-supplied input passed via the ‘order’ parameter to the include/img_view.class.php script. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.


Disclosure Date:

July 29, 2007