CVE-2013-2559

Symphony CMS <2.3.2 - SQL Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-2559. PoCs published by High-Tech Bridge.

AI-analyzed exploit summary This exploit demonstrates an SQL injection vulnerability in Symphony CMS 2.3.1, allowing an attacker to write arbitrary files to the server via the 'sort' parameter in the authors endpoint. The payload uses 'INTO OUTFILE' to write to a specified path.

Description

SQL injection vulnerability in Symphony CMS before 2.3.2 allows remote authenticated users to execute arbitrary SQL commands via the sort parameter to system/authors/. NOTE: this can be leveraged using CSRF to allow remote unauthenticated attackers to execute arbitrary SQL commands.

Exploits (1)

exploitdb WORKING POC VERIFIED

by High-Tech Bridge · textwebappsphp

https://www.exploit-db.com/exploits/38417

View Code ZIP pw:eip

This exploit demonstrates an SQL injection vulnerability in Symphony CMS 2.3.1, allowing an attacker to write arbitrary files to the server via the 'sort' parameter in the authors endpoint. The payload uses 'INTO OUTFILE' to write to a specified path.

Classification

Working Poc 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: Symphony CMS 2.3.1

No auth needed

Prerequisites: Access to the target Symphony CMS instance · File write permissions on the server

MITRE ATT&CK