CVE-2014-1401

AuraCMS <= 2.3 - Authenticated SQL Injection via Search Parameter or HTTP Headers

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-1401. PoCs published by High-Tech Bridge SA.

AI-analyzed exploit summary The advisory details two SQL injection vulnerabilities in AuraCMS 2.3, affecting the 'search' parameter and HTTP headers. Exploitation examples are provided to retrieve MySQL server version.

Description

Multiple SQL injection vulnerabilities in AuraCMS 2.3 and earlier allow remote authenticated users to execute arbitrary SQL commands via the (1) search parameter to mod/content/content.php or (2) CLIENT_IP, (3) X_FORWARDED_FOR, (4) X_FORWARDED, (5) FORWARDED_FOR, or (6) FORWARDED HTTP header to index.php.

Exploits (1)

exploitdb WRITEUP

by High-Tech Bridge SA · textwebappsphp

https://www.exploit-db.com/exploits/31520

View Code ZIP pw:eip

The advisory details two SQL injection vulnerabilities in AuraCMS 2.3, affecting the 'search' parameter and HTTP headers. Exploitation examples are provided to retrieve MySQL server version.

Classification

Writeup 100%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: AuraCMS 2.3 and prior

Auth required

Prerequisites: Authenticated access to the application

MITRE ATT&CK