Description
Multiple SQL injection vulnerabilities in OSClass before 2.3.5 allow remote attackers to execute arbitrary SQL commands via the sCategory parameter to index.php, which is not properly handled by the (1) osc_search_category_id function in oc-includes/osclass/helpers/hSearch.php and (2) findBySlug function oc-includes/osclass/model/Category.php. NOTE: some of these details are obtained from third party information.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by High-Tech Bridge SA · textwebappsphp
https://www.exploit-db.com/exploits/36625
References (6)
Core 6
Core References
Vendor Advisory x_refsource_misc
https://www.htbridge.ch/advisory/multiple_vulnerabilities_in_osclass.html
Patch x_refsource_confirm
https://github.com/osclass/OSClass/commit/ff7ef8a97301aaaf6a97fe46c2c27981a86b4e2f#diff-73
Vendor Advisory x_refsource_confirm
http://osclass.org/2012/01/16/osclass-2-3-5/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/51662
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/47697
Third Party Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2012-01/0157.html
Scores
EPSS
0.0226
EPSS Percentile
84.7%
Details
CWE
CWE-89
Status
published
Products (1)
osclass/osclass
< 2.3.4
Published
Sep 25, 2012
Tracked Since
Feb 18, 2026