CVE-2007-3013

activeWeb contentserver < 5.6.2964 - Authenticated SQL Injection via id Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-3013. PoCs published by RedTeam Pentesting.

AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in activeWeb contentserver, where unsanitized input in the 'id' parameter of 'picture_real_edit.asp' allows attackers to execute arbitrary SQL queries. The example demonstrates a UNION-based SQLi to extract database version information.

Description

SQL injection vulnerability in activeWeb contentserver before 5.6.2964 allows remote authenticated users with edit permission to execute arbitrary SQL commands via the id parameter to admin/picture/picture_real_edit.asp, and probably other unspecified vectors.

Exploits (1)

exploitdb WRITEUP VERIFIED

by RedTeam Pentesting · textwebappsasp

https://www.exploit-db.com/exploits/30296

View Code ZIP pw:eip

The provided text describes an SQL injection vulnerability in activeWeb contentserver, where unsanitized input in the 'id' parameter of 'picture_real_edit.asp' allows attackers to execute arbitrary SQL queries. The example demonstrates a UNION-based SQLi to extract database version information.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: activeWeb contentserver versions prior to 5.6.2964

No auth needed

Prerequisites: Access to the vulnerable endpoint '/admin/picture/picture_real_edit.asp'

MITRE ATT&CK