Vulnerabilities > CVE-2005-4366 - SQL Injection vulnerability in FAD Solutions Drzes HMS 3.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
Multiple SQL injection vulnerabilities in DRZES HMS 3.2 allow remote attackers to execute arbitrary SQL commands via the (1) plan_id parameter to (a) domains.php, (b) viewusage.php, (c) pop_accounts.php, (d) databases.php, (e) ftp_users.php, (f) crons.php, (g) pass_dirs.php, (h) zone_files.php, (i) htaccess.php, and (j) software.php; (2) the customerPlanID parameter to viewplan.php; (3) the ref_id parameter to referred_plans.php; (4) customerPlanID parameter to listcharges.php; and (5) the domain parameter to (k) pop_accounts.php, (d) databases.php, (e) ftp_users.php, (f) crons.php, (g) pass_dirs.php, (h) zone_files.php, (i) htaccess.php, and (j) software.php. NOTE: the viewinvoice.php invoiceID vector is already covered by CVE-2005-4137.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://pridels0.blogspot.com/2005/11/drzes-hms-32-multiple-vuln.html
- http://www.osvdb.org/21179
- http://www.osvdb.org/21180
- http://www.osvdb.org/21181
- http://www.osvdb.org/21182
- http://www.osvdb.org/21183
- http://www.osvdb.org/21184
- http://www.osvdb.org/21185
- http://www.osvdb.org/21186
- http://www.osvdb.org/21187
- http://www.osvdb.org/21188
- http://www.osvdb.org/21189
- http://www.osvdb.org/21190
- http://www.osvdb.org/21191
- http://www.osvdb.org/21192
- http://www.securityfocus.com/bid/15644