Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

WMSCMS Cross Site Scripting / SQL Injection

🗓️ 07 Jun 2010 00:00:00Reported by Ariko-SecurityType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 29 Views

WMSCMS XSS, SQL injection vulnerability in WmsCMS. Input validation of mentioned parameters should be correcte

Code
`  
  
# Title: XSS, SQL injection vulnerability in WmsCMS  
# EDB-ID:   
# CVE: ()  
# OSVDB-ID: ()  
# Author: Ariko-Security  
# Published: 2010-06-05  
  
  
============ { Ariko-Security - Advisory #1/6/2010 } =============  
  
XSS, SQL injection vulnerability in WMSCMS  
  
2007 Secunia Advisory SA25583 (only XSS 3 params)  
  
  
Vendor's Description of Software:  
# http://www.wmsdesign.net  
Demo  
# http://wmscms.com  
  
Dork:  
# n/a  
  
Application Info:  
# Name: WMSCMS  
# ALL versions  
  
Vulnerability Info:  
# Type: XSS  
# Type: SQL injection Vulnerability  
  
Fix:  
# N/A  
  
Time Table:  
# 10/05/2010 - Vendor notified.  
  
Input passed via the "search","sbr","pid","sbl","FilePath" parameters to default.asp is not properly  
  
sanitised before being used in a SQL query.  
  
Input passed via the "sbr","pr","psPrice" parameters to printpage.asp is not properly  
  
sanitised before being used in a SQL query.  
  
  
Input passed to the "search","sbr","p","sbl" parameters in default.asp is not properly  
  
sanitised before being returned to the user.  
  
Solution:  
# Input validation of all mentioned parameters should be corrected.  
  
Vulnerability:  
SQLi & BSQLi  
# http://wmscms.com/default.asp (Parameter search)  
# http://wmscms.com/default.asp (Parameter sbr)  
# http://wmscms.com/default.asp (Parameter pid)  
# http://wmscms.com/default.asp (Parameter sbl)  
# http://wmscms.com/default.asp (Parameter FilePath)  
# http://wmscms.com/printpage.asp (Parameter sbr)  
# http://wmscms.com/printpage.asp (Parameter pr)  
# http://wmscms.com/printpage.asp (Parameter psPrice)  
  
xss  
# http://wmscms.com/default.asp (Parameter = search)   
# http://wmscms.com/default.asp (Parameter = sbr)  
# http://wmscms.com/default.asp (Parameter = p)  
# http://wmscms.com/default.asp (Parameter = sbl)  
  
Credit:  
# Discoverd By: MG / Ariko-Security 2010  
# http://secunia.com/advisories/25583/ (XSS 3 params)  
  
Advisory:  
# http://www.ariko-security.com/june2010/audyt_bezpieczenstwa_692.html  
  
  
Ariko-Security  
[email protected]  
tel.: +48512946012 (Mo-Fr 10.00-20.00 CET)  
  
  
  
  
  
  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
07 Jun 2010 00:00Current
0.3Low risk
Vulners AI Score0.3
wmscmsxsssql injectioninput validationariko-securitysecunia advisorydefault.aspprintpage.asp
29