RevSense v.1.0 (Auth bypass) SQL Injection Vulnerability

vendor:

RevSense

by:

d3b4g

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: RevSense

Affected Version From: RevSense v.1.0

Affected Version To: RevSense v.1.0

Patch Exists: NO

Related CWE: N/A

CPE: a:revsense:revsense:1.0

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

RevSense v.1.0 (Auth bypass) SQL Injection Vulnerability

A vulnerability in RevSense v.1.0 allows an attacker to bypass authentication by using any email address and the password ' or ' 1=1.

Mitigation:

Ensure that user input is properly sanitized and validated before being used in SQL queries.

Source

Exploit-DB raw data:

###############################################################################################
[-] RevSense v.1.0 (Auth bypass) SQL Injection Vulnerability
[+] Script home : http://www.revsense.com/
[-] Discovered By : d3b4g        
[-] Greetz : str0ke /* All my freind         
################################################################################################
 
 Dork:Powered by Revsense

 Go to www.target.com/index.php?section=user&action=login

 Use following information to bypass login.

 Write any email Address as email address.It must to be in email format.

 For exapmple bla@bla.com

 For password use ' or ' 1=1

 Live demo [at] http://demo.revsense.com/index.php?section=user&action=login
--------------------------------------------
--------------------------------------------
I'm a maldivian 
/*

# milw0rm.com [2008-11-19]