vendor:
Danneo CMS
by:
Raz0r, InATeam
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Danneo CMS
Affected Version From: 2000.5.1
Affected Version To: 2000.5.1
Patch Exists: YES
Related CWE: N/A
CPE: a:danneo:danneo_cms
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008
Danneo CMS <= 0.5.1 Remote Blind SQL Injection Exploit
Danneo CMS version 0.5.1 and below are vulnerable to a Remote Blind SQL Injection vulnerability. This exploit requires the “Referers statistics” option to be turned on. The exploit uses a query pattern and a verbose pattern to test the delay and extract the password. The query pattern is “-99' OR IF(%s,BENCHMARK(%d,MD5(31337)),1)/*” and the verbose pattern is “%-12s %2d: %s”. The exploit uses a loop count of 300000 and a user id of 1 by default.
Mitigation:
Upgrade to the latest version of Danneo CMS.
