CVE-2008-2556
published 2008-06-05CVE-2008-2556: SQL injection vulnerability in read.php in PHP Visit Counter 0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the datespan…
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
0.93%
56.1th percentile
SQL injection vulnerability in read.php in PHP Visit Counter 0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the datespan parameter in a read action.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hessel_brouwer | php_visit_counter | <= 0.4 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Nuked-klaN 1.7.7 / SP4.4 - Multiple Vulnerabilities
exploitdb·2008-10-14
CVE-2007-2556 Nuked-klaN 1.7.7 / SP4.4 - Multiple Vulnerabilities
Nuked-klaN 1.7.7 / SP4.4 - Multiple Vulnerabilities
---
# URL: http://real.o-n.fr/
# Date: 14/10/2008
#
# Special thanks to Louis for remembering me I had to finish it =)
#
# VULNERABILITY DETAILS
# ---------------------
#
# Nuked-klaN suffers from a vulnerability due to HTTP_REFERER, which is not
# correctly filtered before being inserted in nuked_stats_visitor table.
#
# If HTTP headers are not addslashes()'d by PHP, it could lead to a INSERT
# SQL injection.
#
# In function view_referer() (visits.php), referers are extracted from the
# database to perform an other SQL query, without being secured in between.
# This leads to a blind SQL injection.
#
# Theses injections are only possible if Nuked-klaN (NK) considers us as a
# new user, because else it won't touch the nuked_stats_visito
Exploit-DB
PHP Visit Counter 0.4 - 'datespan' SQL Injection
exploitdb·2008-05-31
CVE-2008-2556 PHP Visit Counter 0.4 - 'datespan' SQL Injection
PHP Visit Counter 0.4 - 'datespan' SQL Injection
---
###############################################################
#
# PHP Visit Counter <= 0.4 - SQL Injection Vulnerability
#
# Vulnerability discovered by: Lidloses_Auge
# Greetz to: -=Player=- , Suicide, g4ms3, enco,
# GPM, Free-Hack, Ciphercrew, h4ck-y0u
# Date: 30.05.2008
#
###############################################################
#
# Dork: inurl:"read.php?datespan="
#
# Vulnerability:
#
# 1.) SQL Injection
#
# 1.1.) [Target]/read.php?action=read&cat=portal&datespan=null+group+by+null+union+select+1,2,ascii(substring(version(),1,1))/*
#
# Notes:
#
# Output is displayed as INT, so you've to convert it into ascii and
# scan every single letter to get the whole name.
# MySQL Data is stored in [Counterpath]/variables.php
#
#######
No writeups or analysis indexed.
2008-06-05
Published