TutorialMS v1.4 (show) Remote SQL Injection Vulnerability

TutorialMS is a free content management system, developed specifically for tutorial pages. It is written in PHP and uses MySQL as a database. TutorialMS offers all the usual features you need to build quick and easy your own tutorial page, without great programming knowledge.

Input passed via the ‘show’ parameter to the ‘includes/classes/tutorial.php’ script is not properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

Advisory: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2011-5007.php

Comment are closed.