PHP-Nuke多个Downloads组件SQL注入漏洞

25次阅读
没有评论

PHP-Nuke多个Downloads组件SQL注入漏洞

漏洞ID 1107323 漏洞类型 SQL注入
发布时间 2003-05-13 更新时间 2005-10-20
PHP-Nuke多个Downloads组件SQL注入漏洞CVE编号 CVE-2003-1210
PHP-Nuke多个Downloads组件SQL注入漏洞CNNVD-ID CNNVD-200312-164
漏洞平台 PHP CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/22597
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200312-164
|漏洞详情
PHP-Nuke5.x到6.5版本的Downloads模块存在多个SQL注入漏洞。远程攻击者可以借助(1)getit函数的lid参数,或(2)search函数的min参数执行任意SQL命令。
|漏洞EXP
source: http://www.securityfocus.com/bid/7588/info

PHP-Nuke is reportedly prone to multiple SQL injection vulnerabilities in the Downloads module. Exploitation could allow for injection of malicious SQL syntax, resulting in modification of SQL query logic or other attacks. 

http://www.example.com/modules.php?name=Downloads&d_op=getit&lid=2%20<our_code>

where <our_code> represents SQL code that can be injected.
|参考资料

来源:XF
名称:phpnuke-multiple-sql-injection(11984)
链接:http://xforce.iss.net/xforce/xfdb/11984
来源:BID
名称:7588
链接:http://www.securityfocus.com/bid/7588
来源:BUGTRAQ
名称:20030513MoreandMoreSQLinjectiononPHP-Nuke6.5.
链接:http://archives.neohapsis.com/archives/bugtraq/2003-05/0147.html

相关推荐: WinFTP Server Log-SCR Buffer Overflow Vulnerability

WinFTP Server Log-SCR Buffer Overflow Vulnerability 漏洞ID 1096115 漏洞类型 Boundary Condition Error 发布时间 2005-08-17 更新时间 2005-08-17 CVE…

正文完
 0