K-Links Platinum Vulnerabilities Allow XSS and SQL Injection Attacks

According to reports coming from security advisory - Secunia, certain malicious vulnerabilities in K-Links Platinum Website have been detected. The Website checks reciprocal links.

Also, as per the reports, malicious people could exploit these vulnerabilities to carry out cross-site scripting (XSS) attacks or SQL injection attacks.

Describing an XSS attack, security experts said that it relies on a Web program to send harmful code that is a browser-side piece of script to another end-user. And in the process, the attacker may use any of the techniques for encoding the tag's malicious portion, like Unicode, therefore, the request might appear less suspicious to the end-user.

On the other hand, in an SQL injection attack, security experts said that malicious authors design specifically crafted SQL commands to bypass barriers of the login form and to find out what lies on the other side of it.

However, while discussing the current flaws in K-Links Platinum, Security Specialists at Secunia say that the user-typed input for the URL address bar first navigates to the 'refer' and 'report' scripts. Thereafter, within the parameter of username and ID, it redirects user towards the visit.php script that is not properly sanitized prior to its use in SQL queries.

This security flaw, according to the specialists, could be used to manipulate SQL queries by inserting a random SQL code. And its successful exploitation enables to retrieve administrator username and password.

Also, as per the advisory, inadequately sanitized input that is typed in the URL intended for the "addreview" script, prior to its use in SQL queries, could allow its exploitation to manipulate SQL queries via the injection of an arbitrary SQL code. However, for successfully exploiting the flaw, well-founded user credentials are required.

Finally, the third flaw reported in the advisory is related to the input passed to the "login_message" in index.php. If the input is not adequately sanitized prior to sending back to the end-user, it could be abused to run arbitrary HTML as well as script code during the user's browsing activity. This browsing session is assumed to be within the circumstances of a vulnerable site.

Related article: KU Concerned of Spear Phishing Attacking Students

» SPAMfighter News - 19-08-2008

All SPAMfighter products offer a free trial!

SPAMfighter is a free spam filter for Outlook, Outlook Express,Windows Mail, Windows Live Mail and Thunderbird.

Optimize your Slow PC for better performance. Try FREE scan now

Disk space recovery
and disk optimization. Try FULL-DISKfighter free

SPAMfighter Exchange Module is a Spam filter for Exchange server - Free 30 days trial.

Remove Spyware with SPYWAREfighter - Free 30 days trial

Antivirus software for your Windows PC - Free 30 days trial