SmartCMS 2 SQL Injection

Type packetstorm
Reporter Jing Wang
Modified 2015-01-23T00:00:00


                                            `*CVE-2014-9558 SmartCMS Multiple SQL Injection Security Vulnerabilities*  
Exploit Title: Smartwebsites SmartCMS v.2 Multiple SQL Injection Security  
Product: SmartCMS v.2  
Vendor: Smartwebsites  
Vulnerable Versions: v.2  
Tested Version: v.2  
Advisory Publication: Jan 22, 2015  
Latest Update: Jan 22, 2015  
Vulnerability Type: Improper Neutralization of Special Elements used in an  
SQL Command (‘SQL Injection’) (CWE-89)  
CVE Reference: CVE-2014-9558  
Credit: Wang Jing [MAS, Nanyang Technological University (NTU), Singapore]  
*Advisory Details:*  
*(1) Vendor & Product Description*  
*Vendor:* Smartwebsites  
*Product & Version:* SmartCMS v.2  
*Vendor URL & Download:*  
*Product Description:*  
“SmartCMS is one of the most user friendly and smart content management  
systems there is in the Cyprus market. It makes the content management of a  
webpage very easy and simple, regardless of the user’s technical skills.”  
*(2) Vulnerability Details:*  
SmartCMS v.2 has a security vulnerability. It can be exploited by SQL  
Injection attacks.  
*(2.1) *The first vulnerability occurs at “index.php?” page with “pageid”,  
“lang” multiple parameters.  
*(2.2)* The second vulnerability occurs at “sitemap.php?” page with  
“pageid”, “lang” multiple parameters.  
Wang Jing,  
Division of Mathematical Sciences (MAS),  
School of Physical and Mathematical Sciences (SPMS),  
Nanyang Technological University (NTU),