CVE-2005-1224
published 2005-05-02CVE-2005-1224: Multiple SQL injection vulnerabilities in DUware DUportal Pro 3.4 allow remote attackers to execute arbitrary SQL commands via the (1) nChannel parameter to…
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
3.65%
88.2th percentile
Multiple SQL injection vulnerabilities in DUware DUportal Pro 3.4 allow remote attackers to execute arbitrary SQL commands via the (1) nChannel parameter to default.asp, cat.asp, or detail.asp, (2) the iChannel parameter to search.asp, default.asp, result.asp, cat.asp, or detail.asp (3) the iCat parameter to cat.asp or detail.asp, (4) the iData parameter to detail.asp or result.asp, the (5) POL_ID, (6) POL_PARENT, (7) POL_CATEGORY, (8) CHA_NAME, or (9) CHA_ID parameters to inc_vote.asp, or the (10) tfm_order or (11) tfm_orderby parameters to toppages.asp, a different set of vulnerabilities than CVE-2005-1236.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| duware | duportal | — | — |
| duware | duportal | — | — |
| duware | duportal | — | — |
| duware | duportal | — | — |
| duware | duportal | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-4cc2-ww2m-x787: Multiple SQL injection vulnerabilities in DUware DUportal Pro 3
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2005-1224 [HIGH] GHSA-4cc2-ww2m-x787: Multiple SQL injection vulnerabilities in DUware DUportal Pro 3
Multiple SQL injection vulnerabilities in DUware DUportal Pro 3.4 allow remote attackers to execute arbitrary SQL commands via the (1) nChannel parameter to default.asp, cat.asp, or detail.asp, (2) the iChannel parameter to search.asp, default.asp, result.asp, cat.asp, or detail.asp (3) the iCat parameter to cat.asp or detail.asp, (4) the iData parameter to detail.asp or result.asp, the (5) POL_ID, (6) POL_PARENT, (7) POL_CATEGORY, (8) CHA_NAME, or (9) CHA_ID parameters to inc_vote.asp, or the (10) tfm_order or (11) tfm_orderby parameters to toppages.asp, a different set of vulnerabilities than CVE-2005-1236.
GHSA
GHSA-78fv-f7vr-m89j: Multiple SQL injection vulnerabilities in DUware DUportal 3
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2005-1236 [HIGH] GHSA-78fv-f7vr-m89j: Multiple SQL injection vulnerabilities in DUware DUportal 3
Multiple SQL injection vulnerabilities in DUware DUportal 3.1.2 and 3.1.2 SQL allow remote attackers to execute arbitrary SQL commands via the (1) iChannel parameter to channel.asp or search.asp, (2) iData parameter to detail.asp or inc_rating.asp, (3) iCat parameter to detail.asp or type.asp, (4) DAT_PARENT parameter to inc_poll_voting.asp, or (5) iRate parameter to inc_rating.asp, a different set of vulnerabilities than CVE-2005-1224.
No detection rules found.
Exploit-DB
Mozilla Browsers - 0xAD (HOST:) Remote Heap Buffer Overrun (2)
exploitdb·2005-09-22
CVE-2005-2871 Mozilla Browsers - 0xAD (HOST:) Remote Heap Buffer Overrun (2)
Mozilla Browsers - 0xAD (HOST:) Remote Heap Buffer Overrun (2)
---
/*
SSSSSSS, SSSSSSS' PwnZilla 5 - One sploit fits all. (FireFox optimized)
iSY iS; .sS* Exploit for IDN host name heap buffer overrun in
.SSSSSSS* .sS* Mozilla browsers (FireFox, Mozilla and Netscape)
iS; .sS* Copyright (C) 2003-2005 by Berend-Jan Wever.
.SS sSSSSSSP
Official release: http://www.milw0rm.com/id.php?id=1224 (https://www.exploit-db.com/exploits/1224/)
This program is free software; you can redistribute it and/or modify it under
the terms of the GNU General Public License version 2, 1991 as published by
the Free Software Foundation.
This program is distributed in the hope that it will be useful, but WITHOUT
ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
FOR A PARTICULAR PURP
Exploit-DB
DUportal Pro 3.4 - 'cat.asp' Multiple SQL Injections
exploitdb·2005-04-20
CVE-2005-1224 DUportal Pro 3.4 - 'cat.asp' Multiple SQL Injections
DUportal Pro 3.4 - 'cat.asp' Multiple SQL Injections
---
source: https://www.securityfocus.com/bid/13285/info
DUportal Pro is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries.
A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.
These vulnerabilities are reported to affect DUportal Pro 3.4; earlier versions may also be affected.
http://www.example.com/dUpro/Businesses/cat.asp?iCat=548&iChannel=18&nChannel='SQL_INJECTION
http://www.example.com/dUpro/Businesses/cat.asp?iCat=548&iChannel='SQL_INJECTION&nChannel=Businesses
http://www.example.com/dUpro/Businesses/cat.asp?iCat
Exploit-DB
DUportal Pro 3.4 - 'inc_vote.asp' Multiple SQL Injections
exploitdb·2005-04-20
CVE-2005-1224 DUportal Pro 3.4 - 'inc_vote.asp' Multiple SQL Injections
DUportal Pro 3.4 - 'inc_vote.asp' Multiple SQL Injections
---
source: https://www.securityfocus.com/bid/13285/info
DUportal Pro is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries.
A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.
These vulnerabilities are reported to affect DUportal Pro 3.4; earlier versions may also be affected.
http://www.example.com/dUpro/Businesses/../polls/inc_vote.asp?POL_PARENT=74&POL_CATEGORY=254&CHA_ID=15&CHA_NAME='SQL_INJECTION&POL_ID=76&POL_ID=77&POL_ID=75
http://www.example.com/dUpro/Businesses/../polls/inc_vote.asp?POL_PARENT=74&POL_CATE
Exploit-DB
DUportal Pro 3.4 - 'search.asp?iChannel' SQL Injection
exploitdb·2005-04-20
CVE-2005-1224 DUportal Pro 3.4 - 'search.asp?iChannel' SQL Injection
DUportal Pro 3.4 - 'search.asp?iChannel' SQL Injection
---
source: https://www.securityfocus.com/bid/13285/info
DUportal Pro is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries.
A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.
These vulnerabilities are reported to affect DUportal Pro 3.4; earlier versions may also be affected.
http://www.example.com/dUpro/Businesses/../home/search.asp?keyword=dcrab&iChannel='SQL_INJECTION
http://www.example.com/dUpro/Classifieds/../home/search.asp?keyword=dcrab&iChannel='SQL_INJECTION
http://www.example.com/dUpro/Events/../home/searc
Exploit-DB
DUportal Pro 3.4 - 'result.asp' Multiple SQL Injections
exploitdb·2005-04-20
CVE-2005-1224 DUportal Pro 3.4 - 'result.asp' Multiple SQL Injections
DUportal Pro 3.4 - 'result.asp' Multiple SQL Injections
---
source: https://www.securityfocus.com/bid/13285/info
DUportal Pro is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries.
A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.
These vulnerabilities are reported to affect DUportal Pro 3.4; earlier versions may also be affected.
http://www.example.com/dUpro/Businesses/../polls/result.asp?iData=74&iCat=254&iChannel='SQL_INJECTION&nChannel=Polls
http://www.example.com/dUpro/Businesses/../polls/result.asp?iData='SQL_INJECTION&iCat=254&iChannel=15&nChannel=Polls
http://ww
Exploit-DB
DUportal Pro 3.4 - 'detail.asp' Multiple SQL Injections
exploitdb·2005-04-20
CVE-2005-1224 DUportal Pro 3.4 - 'detail.asp' Multiple SQL Injections
DUportal Pro 3.4 - 'detail.asp' Multiple SQL Injections
---
source: https://www.securityfocus.com/bid/13285/info
DUportal Pro is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries.
A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.
These vulnerabilities are reported to affect DUportal Pro 3.4; earlier versions may also be affected.
http://www.example.com/dUpro/Businesses/../Pictures/detail.asp?iData=53&iCat=510&iChannel=3&nChannel='SQL_INJECTION
http://www.example.com/dUpro/Businesses/../Pictures/detail.asp?iData=53&iCat=510&iChannel='SQL_INJECTION&nChannel=Pictures
http
Exploit-DB
DUportal Pro 3.4 - 'default.asp' Multiple SQL Injections
exploitdb·2005-04-20
CVE-2005-1224 DUportal Pro 3.4 - 'default.asp' Multiple SQL Injections
DUportal Pro 3.4 - 'default.asp' Multiple SQL Injections
---
source: https://www.securityfocus.com/bid/13285/info
DUportal Pro is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries.
A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.
These vulnerabilities are reported to affect DUportal Pro 3.4; earlier versions may also be affected.
http://www.example.com/dUpro/Businesses/../Articles/default.asp?iChannel=2&nChannel='SQL_INJECTION
http://www.example.com/dUpro/Businesses/../Articles/default.asp?iChannel='SQL_INJECTION&nChannel=Articles
http://www.example.com/dUpro/Business
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=111401172901705&w=2http://secunia.com/advisories/15031http://www.digitalparadox.org/advisories/duppro.txthttp://www.securiteam.com/windowsntfocus/5TP0O0AFFQ.htmlhttp://www.securityfocus.com/archive/1/453316/100/0/threadedhttp://www.securityfocus.com/bid/13285https://exchange.xforce.ibmcloud.com/vulnerabilities/20197https://exchange.xforce.ibmcloud.com/vulnerabilities/30671http://marc.info/?l=bugtraq&m=111401172901705&w=2http://secunia.com/advisories/15031http://www.digitalparadox.org/advisories/duppro.txthttp://www.securiteam.com/windowsntfocus/5TP0O0AFFQ.htmlhttp://www.securityfocus.com/archive/1/453316/100/0/threadedhttp://www.securityfocus.com/bid/13285https://exchange.xforce.ibmcloud.com/vulnerabilities/20197https://exchange.xforce.ibmcloud.com/vulnerabilities/30671
2005-05-02
Published