[原文]SQL injection vulnerability in tr1.php in YourFreeWorld.com Stylish Text Ads Script allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly involving an attack vector using advertise.php.
[CNNVD]YourFreeWorld.com Stylish Text Ads Script tr1.php SQL注入漏洞(CNNVD-200605-409)
YourFreeWorld.com Stylish Text Ads Script的tr1.php存在SQL注入漏洞。远程攻击者可以借助id参数执行任意SQL指令，可能涉及使用advertise.php的攻击向量。
Stylish Text Ads tr1.php id Parameter SQL Injection
Remote / Network Access
Loss of Confidentiality,
Loss of Integrity
Stylish Text Ads contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the tr1.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.
luny is credited with the discovery of these vulnerabilities.
YourFreeWorld Stylish Text Ads Script 0
Stylish Text Ads Script is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content.
Attacker-supplied HTML and script code would be executed in the context of the affected website, potentially allowing an attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible.
These issues can be exploited through a web client.
The vendor has released an update. Please contact the vendor for information on how to obtain and apply this update.