CVE-2010-1867

Description

SQL injection vulnerability in the ArticleAttachment::GetAttachmentsByArticleNumber method in javascript/tinymcs/plugins/campsiteattachment/attachments.php in Campsite 3.3.5 and earlier allows remote attackers to execute arbitrary SQL commands via the article_id parameter.

Affected products

• campware.org / campsite3.3.5
• campware.org / campsite2.2.2 – 2.2.2
• campware.org / campsite2.3.3 – 2.3.3
• campware.org / campsite2.4.3 – 2.4.3
• campware.org / campsite2.5.2 – 2.5.2
• campware.org / campsite2.6.0 – 2.6.0
• campware.org / campsite2.6.1 – 2.6.1
• campware.org / campsite2.6.9 – 2.6.9
• campware.org / campsite2.7.0 – 2.7.0
• campware.org / campsite3.0.3 – 3.0.3
• campware.org / campsite3.1.0 – 3.1.0
• campware.org / campsite3.1.1 – 3.1.1
• campware.org / campsite3.1.2 – 3.1.2
• campware.org / campsite3.1.3 – 3.1.3
• campware.org / campsite3.2.0 – 3.2.0
• campware.org / campsite3.2.1 – 3.2.1
• campware.org / campsite3.2.2 – 3.2.2
• campware.org / campsite3.2.3 – 3.2.3
• campware.org / campsite3.3.0 – 3.3.0
• campware.org / campsite3.3.0 – 3.3.0
• campware.org / campsite3.3.1 – 3.3.1
• campware.org / campsite3.3.2 – 3.3.2
• campware.org / campsite3.3.3 – 3.3.3
• campware.org / campsite3.3.4 – 3.3.4

References

• MISChttp://osvdb.org/64215
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/58285
• VENDOR_ADVISORYhttp://secunia.com/advisories/39580
• MISChttp://www.campware.org/en/camp/campsite_news/832/
• MISChttp://php-security.org/2010/05/01/mops-2010-002-campsite-tinymce-article-attachment-sql-injection-vulnerability/index.html
• MISChttp://www.securityfocus.com/bid/39862