https://www.exploit-db.com/exploits/23659
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200411-115

OpenJournal是一个基于WEB接口BLOG类型程序。OpenJournal不充分过滤URL中的参数数据，远程攻击者可以利用这个漏洞绕过验证，直接访问管理控制面板。问题是oj.cgi对用户提交的uid参数缺少充分过滤，提交恶意数据可绕过验证访问软件管理接口，增加用户帐户等恶意操作。

source: http://www.securityfocus.com/bid/9598/info

It has been reported that OpenJournal is prone to an authentication bypass vulnerability. This issue is caused by the application failing to properly sanitize URI specified parameters. Successful exploitation of this issue may lead to remote attackers gaining unauthorized access to online journal files associated with the application, adding new users to the database as well as a number of other possibilities.

http://www.test.com/cgi-bin/oj.cgi?db=default&uid=%00&userid=hacker&auth=adduser

来源:BID
名称:9598
链接:http://www.securityfocus.com/bid/9598
来源:XF
名称:openjournal-uid-admin-access(15069)
链接:http://xforce.iss.net/xforce/xfdb/15069
来源:www.grohol.com
链接:http://www.grohol.com/downloads/oj/latest/changelog.txt
来源:BUGTRAQ
名称:20040206OpenJournalBlogAuthenticaionBypassingVulnerability
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=107619136600713&w;=2
来源:OSVDB
名称:3872
链接:http://www.osvdb.org/3872