Cotonti 'c' Parameter SQL Injection Vulnerability Network Vulnerability

Summary

This host is running Cotonti and is prone to SQL Injection vulnerability.

Impact

Successful exploitation will allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

Solution

Upgrade to version 0.9.14 or higher, For updates refer to http://www.cotonti.com

Insight

Input passed via the 'c' parameter to index.php (when 'e' is set to 'rss') is not properly sanitised before being used in a SQL query.

Affected

Cotonti version 0.9.13 and prior

Detection

Send a crafted sql query via HTTP GET request and check whether it is able to get the mysql version or not.

References

http://packetstormsecurity.com/files/122639/cotonti0913-sql.txt
http://seclists.org/bugtraq/2013/Aug/1
http://secunia.com/advisories/54289
http://www.exploit-db.com/exploits/27287
https://www.htbridge.com/advisory/HTB23164

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-4789

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

ASP-Dev XM Event Diary Multiple Vulnerabilities
4psa Voipnow Local File Inclusion Vulnerability
Atmail Multiple Unspecified Security Vulnerabilities.
ASAS Server End User Self Service (EUSS) SQL Injection Vulnerability
ALCASAR Remote Code Execution Vulnerability

Take action and discover your vulnerabilities