XRay CMS 'username' and 'password' SQL Injection Vulnerabilities
BID:51870
Info
XRay CMS 'username' and 'password' SQL Injection Vulnerabilities
| Bugtraq ID: | 51870 |
| Class: | Input Validation Error |
| CVE: |
CVE-2012-1026 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 06 2012 12:00AM |
| Updated: | Feb 16 2012 11:40PM |
| Credit: | chap0 |
| Vulnerable: |
Johannes Ekberg XRay CMS 1.1.1 |
| Not Vulnerable: | |
Discussion
XRay CMS 'username' and 'password' SQL Injection Vulnerabilities
XRay CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.
Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
XRay CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.
Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
Exploit / POC
XRay CMS 'username' and 'password' SQL Injection Vulnerabilities
Attackers can use a browser to exploit these issues.
The following example proof-of-concept is available:
Attackers can use a browser to exploit these issues.
The following example proof-of-concept is available:
Solution / Fix
XRay CMS 'username' and 'password' SQL Injection Vulnerabilities
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
XRay CMS 'username' and 'password' SQL Injection Vulnerabilities
References:
References:
- XRay CMS Download Page (uppfinnarn)
- XRayCMS 1.1.1 SQL Injection Vulnerability - ID: 3488241 (Henri Salo)