Havalite CMS SQL Injection and Arbitrary File Upload Vulnerabilities
BID:52825
Info
Havalite CMS SQL Injection and Arbitrary File Upload Vulnerabilities
| Bugtraq ID: | 52825 |
| Class: | Input Validation Error |
| CVE: |
CVE-2012-5893 CVE-2012-5894 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 30 2012 12:00AM |
| Updated: | Dec 10 2012 04:00PM |
| Credit: | KedAns-Dz |
| Vulnerable: |
Havalite Havalite CMS 0 |
| Not Vulnerable: | |
Discussion
Havalite CMS SQL Injection and Arbitrary File Upload Vulnerabilities
Havalite CMS is prone to an SQL-injection vulnerability and an arbitrary-file-upload vulnerability because it fails to sanitize user-supplied data.
Exploiting these issues could allow an attacker to compromise the application, execute arbitrary code, access or modify data, or exploit latent vulnerabilities in the underlying database.
Havalite CMS is prone to an SQL-injection vulnerability and an arbitrary-file-upload vulnerability because it fails to sanitize user-supplied data.
Exploiting these issues could allow an attacker to compromise the application, execute arbitrary code, access or modify data, or exploit latent vulnerabilities in the underlying database.
Exploit / POC
Havalite CMS SQL Injection and Arbitrary File Upload Vulnerabilities
An attacker can use a browser to exploit these issues.
The following example URI and exploit code are available:
http://www.example.com/hava_post.php?postId=9999' [ SQLi ]
An attacker can use a browser to exploit these issues.
The following example URI and exploit code are available:
http://www.example.com/hava_post.php?postId=9999' [ SQLi ]
Solution / Fix
Havalite CMS SQL Injection and Arbitrary File Upload Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Havalite CMS SQL Injection and Arbitrary File Upload Vulnerabilities
References:
References:
- Havalite CMS Homepage (Havalite)