Kempt SiteDone SQL Injection and Cross-Site Scripting Vulnerabilities

vendor:

SiteDone

by:

Unknown

7.5

CVSS

HIGH

SQL Injection, Cross-Site Scripting

CWE

Product Name: SiteDone

Affected Version From: 2

Affected Version To: Unknown

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested: Unknown

Unknown

Kempt SiteDone SQL Injection and Cross-Site Scripting Vulnerabilities

The SQL injection vulnerability and cross-site scripting vulnerability in Kempt SiteDone could allow an attacker to steal authentication credentials, control site rendering, compromise the application, access or modify data, or exploit other vulnerabilities in the database.

Mitigation:

Apply security patches and input validation to prevent SQL injection and cross-site scripting attacks. Limit user input and sanitize data before executing queries or displaying content.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/38856/info

Kempt SiteDone is prone to an SQL-injection vulnerability and cross-site scripting vulnerability.

Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, control how the site is rendered to the user, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

Kempt SiteDone 2.0 is vulnerable; other versions may also be affected. 


The following example URIs are available:

http://www.example.com/site/store/detail.php?articleId=-1 UNION SELECT 1,2,3,4,5,6,concat_ws(0x3a,version(),database(),user()),8,9,10,11,12,13,14,15,16,17,18,19--

http://www.example.com/site/store/detail.php?articleId=">