PostNuke ContentExpress Module Blind Sql Injection

vendor:

PostNuke ContentExpress Module

by:

Ali Abbasi

7,5

CVSS

HIGH

SQL Injection

CWE

Product Name: PostNuke ContentExpress Module

Affected Version From: 0.3.2

Affected Version To: 0.3.2

Patch Exists: N/A

Related CWE: N/A

CPE: a:postnuke:postnuke

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2010

PostNuke ContentExpress Module Blind Sql Injection

Vulnerability occurred in form_id parameter of FormExpress Component in Postnuke /index.php?module=FormExpress&func=display_form&form_id=1' The Attacker could read content of the database via blind sql injection methods (like ascii(substring))

Mitigation:

Input validation and sanitization should be done to prevent SQL injection attacks.

Source

Exploit-DB raw data:

# Date: 17/03/2010
# Software Link: http://sourceforge.net/projects/pn-formexpress/
# Version: 0.3.2
####################################################################
PostNuke ContentExpress Module Blind Sql Injection
Reported by Sharif University of Technology CSIRT
Vulnerability Analysis and Penetration Testing Group
cert.sharif.edu , nsc.sharif.edu
####################################################################

===[ POC ]===
Vulnerability occurred in form_id parameter of FormExpress Component in Postnuke
/index.php?module=FormExpress&func=display_form&form_id=1'
The Attacker could read content of the database via blind sql injection methods (like ascii(substring))
####################################################################

-----
Ali Abbasi