Cotonti 'c' Parameter SQL Injection Vulnerability Network Vulnerability

Summary

This host is running Cotonti and is prone to SQL Injection vulnerability.

Impact

Successful exploitation will allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

Solution

Upgrade to version 0.9.14 or higher, For updates refer to http://www.cotonti.com

Insight

Input passed via the 'c' parameter to index.php (when 'e' is set to 'rss') is not properly sanitised before being used in a SQL query.

Affected

Cotonti version 0.9.13 and prior

Detection

Send a crafted sql query via HTTP GET request and check whether it is able to get the mysql version or not.

References

http://packetstormsecurity.com/files/122639/cotonti0913-sql.txt
http://seclists.org/bugtraq/2013/Aug/1
http://secunia.com/advisories/54289
http://www.exploit-db.com/exploits/27287
https://www.htbridge.com/advisory/HTB23164

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-4789
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

AjaXplorer zoho plugin Directory Traversal Vulnerability
Artifectx xClassified 'catid' SQL Injection Vulnerability
ATutor < 1.5.1-pl1 Multiple Flaws
A-A-S Application Access Server Multiple Vulnerabilities
Atutor AChecker Multiple SQL Injection and XSS Vulnerabilities

Take action and discover your vulnerabilities