IT Security Research
IT Security Advisory
The innovations for the future need
secure foundations today.
With information technology now embedded in all business activities, security is an enterprise concern.
Home » Research Papers

Piwigo SQL Injection Vulnerability

Sense of Security - Security Advisory - SOS-09-007 security advisory

Release Date.                  17-Aug-2009
Last Update.                   17-Aug-2009
Vendor Notification Date.      15-Jun-2009
Product.                       Piwigo
Platform.                      Independent
Affected versions.             2.0.0 (verified), possibly others
Severity Rating.               Medium
Impact.                        Manipulation of data
Attack Vector.                 Remote without authentication
Solution Status.               Upgrade to 2.0.3
CVE reference.                 Not yet assigned

Details.
Piwigo is a photo gallery application written in PHP. The 
application suffers from a SQL injection vulnerability in 
comments.php, as it fails to validate data supplied in the
'items_number' variable before being used in an SQL query.

SQL injection attacks can give an attacker access to backend
database contents, the ability to remotely execute system 
commands, or in some circumstances the means to take control 
of the operating system hosting the database.

Proof of Concept.
/piwigo-2.0.0/comments.php?items_number=1'"

Solution.
Upgrade to version 2.0.3.

Discovered by.
SOS Labs.
Reset Font Size Increase Font Size Contact us via email form Share/Save/Bookmark

Telephone 1300 922 923.

For an engagement enquiry.
For an information request.