CVE-2006-3090

Name of the Vulnerable Software and Affected Versions PhpMyFactures versions 1.0 through 1.2

Description The issue allows remote attackers to execute arbitrary SQL commands due to multiple SQL injection vulnerabilities. This can be achieved via various parameters in different API endpoints, such as the id pays parameter in "/pays/modifier pays.php", the id produit, quantite, prix ht, and date parameters in "/stocks/ajouter.php", the id cat parameter in "/produits/modifier cat.php", the id client parameter in "/clients/modifier client.php", the id remise parameter in "/remises/index.php", the id taux parameter in "/tva/index.php", the ref produit and id stock parameters in "/stocks/index.php", the id pays parameter in "/pays/index.php", and the id cat parameter in "/produits/index.php". The vulnerability is particularly problematic when magic quotes gpc is disabled.

Recommendations For PhpMyFactures versions 1.0 through 1.2, consider disabling the affected API endpoints until a patch is available. Restrict access to the vulnerable parameters, such as id pays, id produit, quantite, prix ht, date, id cat, id client, id remise, id taux, ref produit, and id stock, to minimize the risk of exploitation. Avoid using these parameters in the affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.