CVE-2013-5967
AlienVault OSSIM < 4.3 - SQL Injection via RadarReport Date Parameter
Title source: llmExploitation Summary
EIP tracks 2 public exploits for CVE-2013-5967.
PoCs published by Yu-Chi Ding, including Metasploit module auxiliary/gather/alienvault_iso27001_sqli.
AI-analyzed exploit summary The provided text describes SQL injection vulnerabilities in Open Source SIEM (OSSIM) 4.3.0 and prior, with example URLs demonstrating injection points. No actual exploit code is included.
Description
Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 4.3 and earlier allow remote attackers to execute arbitrary SQL commands via the date_from parameter to (1) radar-iso27001-potential.php, (2) radar-iso27001-A12IS_acquisition-pot.php, (3) radar-iso27001-A11AccessControl-pot.php, (4) radar-iso27001-A10Com_OP_Mgnt-pot.php, or (5) radar-pci-potential.php in RadarReport/.
Exploits (2)
The provided text describes SQL injection vulnerabilities in Open Source SIEM (OSSIM) 4.3.0 and prior, with example URLs demonstrating injection points. No actual exploit code is included.
This Metasploit module exploits an authenticated SQL injection vulnerability in AlienVault 4.5.0 to read arbitrary files from the filesystem. It leverages a PNG generation PHP file to inject malicious SQL queries and extract file contents in chunks.