Nodes Studio CMS SQL Injection, XSS and FPD vulnerabilities

2015.04.17

Credit: MustLive

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Hello list!
There are SQL Injection, Cross-Site Scripting and Full Path Disclosure vulnerabilities in Nodes Studio CMS. This is Russian commercial CMS, which I found at one site of Russian terrorists and propagandists.
-------------------------
Affected vendors:
-------------------------
Nodes Studio.
-------------------------
Affected products:
-------------------------
Vulnerable are all versions of Nodes Studio CMS.
----------
Details:
----------
SQL Injection (WASC-19):
http://site/news/%22%20or%20benchmark(10000000,md5(now()))%3E0%23
There are filtration in the system of keywords (such as from) to protect against SQLi attacks. But it can be bypassed with using special technique or one can conduct DoS attack via SQLi.
Cross-Site Scripting (WASC-08):
http://site/news/%22%22%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E
Full Path Disclosure (WASC-13):
http://site/news/%22%201
I mentioned about these vulnerabilities at my site (http://websecurity.com.ua/7694/).
Best wishes & regards,
MustLive
Administrator of Websecurity web site
http://websecurity.com.ua

References:

http://websecurity.com.ua/7694/

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Nodes Studio CMS SQL Injection, XSS and FPD vulnerabilities

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.