Menu

#429 ValuePreference class: SQL Injection

closed-fixed
Teo Sarca
Security (38)
7
2007-04-07
2007-03-23
Teo Sarca
No

== Steps to reproduce ==
1. Open Sales Order window
2. Go to PO Reference field
3. Enter the folowing string exactly (including '):
'||(select Password from AD_User where AD_User_ID=0)||'
4. Right click and set as value preference.

Take a look in the context and you will see:
P143|POReference == '||(select Password from AD_User where AD_User_ID=0)||'

Logout & login and:
1. go to Tools->Preferences and you will see:
P143|POReference == System
2. go to sales order, and hit new, and in the PO Reference field you will get System.

Best regards,
Teo Sarca

Discussion

  • Teo Sarca

    Teo Sarca - 2007-03-23

    Logged In: YES
    user_id=1311402
    Originator: YES

    *** Fixed in rev. 1890

     

  • Teo Sarca

    Teo Sarca - 2007-03-23
    • status: open --> pending-fixed
     

  • SourceForge Robot

    SourceForge Robot - 2007-04-07

    Logged In: YES
    user_id=1312539
    Originator: NO

    This Tracker item was closed automatically by the system. It was
    previously set to a Pending status, and the original submitter
    did not respond within 14 days (the time period specified by
    the administrator of this Tracker).

     

  • SourceForge Robot

    SourceForge Robot - 2007-04-07
    • status: pending-fixed --> closed-fixed
     

Log in to post a comment.