Tuesday, December 4, 2007

A user can gain admin level in snitz 2000 by SQL Injection

########################## WwW.BugReport.ir #########################

#

# AmnPardaz Security Research & Penetration Testing Group

#

# Title: A user can gain admin level in snitz 2000 by SQL Injection

# vendor: http://forum.snitz.com/

# Googling: "Powered by Snitz" > 2,440,000 victims

# Last bug report in 2007-02-16 with 4692 visitors

# Exploit: Available

# Fix Available: Update to last version.

######################## Bug Description ###########################

A user can gain admin level in the forum and can access to the forum.

It is because of a SQL Injection in "Active.asp"


After login to your VICTIM forum, execute below script

~~~~~~~~~~~~Start HTML Exploit~~~~~~~~~



Query:


DefaultValues:


Submit:




~~~~~~~~~~~~End HTML Exploit~~~~~~~~~


##############################
#######################################

# Security Site: WwW.BugReport.ir - WwW.AmnPardaz.Com

# Country: Iran

# Contact: admin@bugreport.ir

# Credit: Soroush Dalili found this bug.

#####################################################################

at 7:26 AM

Labels: , , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)