CVE-2005-4366

Name of the Vulnerable Software and Affected Versions DRZES HMS version 3.2

Description The issue allows remote attackers to execute arbitrary SQL commands. This is achieved through SQL injection vulnerabilities in multiple parameters and API endpoints, including the plan id parameter to various PHP files such as "domains.php", "viewusage.php", "pop accounts.php", "databases.php", "ftp users.php", "crons.php", "pass dirs.php", "zone files.php", "htaccess.php", and "software.php". Additionally, vulnerabilities exist in the customerPlanID parameter to "viewplan.php" and "listcharges.php", the ref id parameter to "referred plans.php", and the domain parameter to several of the aforementioned PHP files.

Recommendations For DRZES HMS version 3.2, consider disabling the vulnerable parameters such as plan id, customerPlanID, ref id, and domain in their respective PHP files until a patch is available. Restrict access to the affected PHP files to minimize the risk of exploitation. Avoid using the vulnerable parameters in the affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.