Zenario CMS 8.8.53370 – ‘id’ Blind SQL Injection

Exploit Database
17 阅读

作者： Balaji Ayyasamy

日期： 2021-03-15
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/49642/

# Exploit Title: Zenario CMS 8.8.53370 - 'id' Blind SQL Injection 
# Date: 05/02/2021
# Exploit Author: Balaji Ayyasamy
# Vendor Homepage: https://zenar.io/
# Software Link: https://github.com/TribalSystems/Zenario/releases/tag/8.8
# Version: 8.8.53370
# Tested on: Windows 10 Pro 19041 (x64_86) + XAMPP 7.4.14
# CVE: CVE-2021-26830
# Reference - https://edhunter484.medium.com/blind-sql-injection-on-zenario-cms-b58b6820c32d

Step 1 - Login to the zenario cms with admin credentials.
Step 2 - Go to modules and select plugin library.
Step 3 - Select any plugin and press delete button. Copy the delete request and send it to the sqlmap.

Command - sqlmap -r request.txt -p id

last Exploits
Zenario CMS 8.8.53370 – ‘id’ Blind SQL Injection的更多信息

Bs Events_Locator Script – SQL Injection：
PHP State – ‘id’ SQL Injection：
Imageview – ‘upload.php’ Arbitrary File Upload：
visinia 1.3 – Multiple Vulnerabilities：
WordPress Plugin PicUploader 1.0 – Remote File Upload：
QuickEStore 6.1 – Backup Dump：
M/Monit 3.3.2 – Cross-Site Request Forgery：
Pligg CMS 2.0.2 – ‘load_data_for_search.php’ SQL Injection：