Parameter Delimiter

Revision as of 10:43, 29 May 2009 by Deleted user (Talk | contribs)

Jump to: navigation, search

[ australia national flag ] http map [ horn of africa services ] [ asian pooping ] [ automobile tulsa used ] [ south african politician ] [ open learning australia melbourne ] [ automatic cutoff power station ] [ norton antivirus downloads free ] antique asia print links [ automotive technician schooling ] [ pc links australia ] url [ auto gps software ] [ booty asians ] [ plunkett homes australia ] [ panda antivirus titanium 2004 keygen ] [ before symantec antivirus could be completely installed ] map [ africa marine world usa ] [ map of sydney nsw australia ] [ norton antivirus 2003 software ] [ antivirus gratuit online ] [ auto cad job ] [ norton antivirus corporate edition uninstall ] [ australia ministry of tourism ] webmap malaria east africa hays [ avg antivirus registration ] [ openantivirus ] australian bull riding [ great white shark tours south africa ] [ asian g girl string ] [ download panda antivirus software ] [ housecalls antivirus free scan ] [ avg antivirus system download ] [ auto codecs ] [ panda antivirus scan online ] [ mountasia family fun center ] [ 2006 keygen pro v2.0.205.1 winantivirus ] [ africa diode light manufacturer south ] [ dr solomons antivirus toolkit ] [ airbrush automotive stencils ] [ ez antivirus 2005 reviews ] url [ south african t 6 ] [ australia travel visa the world cruise ] [ asian mixed with black girl ]

This is an Attack. To view all attacks, please see the Attack Category page.

Last revision (mm/dd/yy): 05/29/2009


This attack is based on the manipulation of parameter delimiters used by web application input vectors in order to cause unexpected behaviors like access control and authorization bypass and information disclosure, among others.

Risk Factors



In order to illustrate this vulnerability, we will use a vulnerability found on Poster V2, a posting system based on PHP programming language.

This application has a dangerous vulnerability that allows inserting data into user fields (username, password, email address and privileges) in “mem.php” file, which is responsible for managing the application user.

An example of the file “mem.php”, where user Jose has admin privileges and Alice user access:


When a user wants to edit his profile, he must use the "edit account” option in the “index.php” page and enter his login information. However, using “|” as a parameter delimiter on email field followed by “admin”, the user could elevate his privileges to administrator. Example:

Username: Alice
Password: 87654321
Email: |admin| 

This information will be recorded in “mem.php” file like this:


In this case, the last parameter delimiter considered is “|admin|” and the user could elevate his privileges by assigning administrator profile.

Although this vulnerability doesn’t allow manipulation of other users' profiles, it allows privilege escalation for application users.

Related Threat Agents

Related Attacks

Related Vulnerabilities

Related Controls