iMoveis SQL Injection Vulnerability

2010.11.20

Credit: EraGoN

Risk: High

Local: No

Remote: Yes

CVE: CVE-2010-4273

CWE: CWE-89

CVSS Base Score: 7.5/10

Impact Subscore: 6.4/10

Exploitability Subscore: 10/10

Exploit range: Remote

Attack complexity: Low

Authentication: No required

Confidentiality impact: Partial

Integrity impact: Partial

Availability impact: Partial

# Exploit Title : iMoveis SQL Injection Vulnerability
# Date : 26/10/2010
# Author : EraGoN
# Software link : http://baixar7.com/download/acc-imoveis-script-php.rar/3d1e7bf4b9
# Version : 1.1
# Tested on : Linux / Windows XP
# Dork :
inurl:imoveis.php?id=
#Error
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server
version for the right syntax to use near '20'' at line 1
#Vuln :
http://www.site.org/imoveis.php?id=20
**Proud to be Muslim
**Proud to be Albanian
**www.eragon.ws
Contact : eragon@legends.ag
[ Special Thanks : KuBaNeZi , DJ-DUKLI , The|Denny` , Loock3D , BaDBoY ]
[ Visit / Greetz : ALBANIAN-LEGENDS.COM Members - www.eragon.ws - www.uah1.org.uk ]

References:

http://xforce.iss.net/xforce/xfdb/62843

http://www.securityfocus.com/bid/44481

http://www.exploit-db.com/exploits/15338

http://packetstormsecurity.org/1010-exploits/accimoveis-sql.txt

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

iMoveis SQL Injection Vulnerability

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.