Advisory: SolusLabs - SolusVM




Vendor details

Solus Virtual Manager (SolusVM) is a powerful GUI based VPS management system with full OpenVZ, Linux KVM, Xen Paravirtualization and Xen HVM support. SolusVM allows you and your clients to manage a VPS cluster with security & ease.

solusvm.com

Vulnerability details

SolusVM contains a vulnerability that allows remote, unauthenticated attackers to inject SQL commands (SQLi) on vulnerable installations of SolusVM.

The file "lostpassword.php" does not sufficiently sanitize user-supplied data for the GET variable "code".

PoC

GET /lostpassword.php?mode=verify&code=-1'+[SQLi]+'n


Advisory timeline