CVE-2010-5000
Description
SQL injection vulnerability in login/login_index.php in MCLogin System 1.1 and 1.2 allows remote attackers to execute arbitrary SQL commands via the myusername parameter (aka Username field) in a do_login action. NOTE: some of these details are obtained from third party information.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or — if you've already worked around this in production — publish your fix to the community-verified tier.
✚ Propose a mitigation on Community → Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
Exploits
Public proof-of-concept code below. AS-IS, for defenders and authorised testing only.
Exploit-DB
Home of MCLogin System - Authentication Bypass
Author: L0rd CrusAd3r
Published: 2010-06-08
Vendor url:-/www.maniacomputer.com
################################################################################################
Authentication Bypass in Home of MCLogin System
1,1
######################################Author:L0rd
CrusAd3r######################################
Description:-
With MCLogin System your visitors can login or register a new account. It is
written in PHP and the data is stored in a MySql database.Very easy to
install or to customize to meet your needs. You can add it to your pages
with just one link.
###################################################################################################
Vulnerability:-
*Authentication Bypass found
The Provided Script as Sqli Vulnerability in Admin Login page
DEMO : http://server/login/login_index.php
Use the string a' or '1'='1 for Username and Password to gain access.
######################################################################################################
Greetz to:MaYur,Sid3^effects
--
With R3gards,
L0rd ÇrusAdêrApplication impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| joe_pieruccini | mclogin_system | 1.1 | |
| joe_pieruccini | mclogin_system | 1.2 | |
References
- http://packetstormsecurity.org/1006-exploits/mcloginsystem-sql.txt
- http://secunia.com/advisories/40122
- http://securityreason.com/securityalert/8504
- http://www.exploit-db.com/exploits/13766/
- http://www.securityfocus.com/bid/40633
- http://packetstormsecurity.org/1006-exploits/mcloginsystem-sql.txt
- http://secunia.com/advisories/40122
- http://securityreason.com/securityalert/8504
- http://www.exploit-db.com/exploits/13766/
- http://www.securityfocus.com/bid/40633
CWEs
CWE-89
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.