vendor:
RUNCMS
by:
Alexandr 'Sh2kerr' Polyakov
N/A
CVSS
HIGH
Blind SQL Injection
89
CWE
Product Name: RUNCMS
Affected Version From: 1.6
Affected Version To: 1.6
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested:
2007
RUNCMS 1.6 BLIND SQL Injection Exploit get Admin Cookie
This exploit allows an attacker to inject SQL code in certain modules of RUNCMS 1.6, including 'brokenfile.php' and 'visit.php'. By injecting the code, the attacker can retrieve the admin cookie, which can then be used to login to the admin session and change the admin's password.
Mitigation:
Upgrade to a patched version of RUNCMS that fixes the SQL injection vulnerability.