Entreprise d'experts en Sécurité Informatique : Audits et conseils en cybersécurité
Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com


CVE-2019-9053

Description

An issue was discovered in CMS Made Simple 2.2.8. It is possible with the News module, through a crafted URL, to achieve unauthenticated blind time-based SQL injection via the m1_idlist parameter.

POC

Reference

- http://packetstormsecurity.com/files/152356/CMS-Made-Simple-SQL-Injection.html

- https://www.exploit-db.com/exploits/46635/

Github

- https://github.com/0xEhab/Code

- https://github.com/0xdc10/simple-ctf-thm

- https://github.com/0xftorres/CVE-2019-9053-Fixed

- https://github.com/ARPSyndicate/cvemon

- https://github.com/AfvanMoopen/tryhackme-

- https://github.com/Azrenom/CMS-Made-Simple-2.2.9-CVE-2019-9053

- https://github.com/Azrenom/CMSMadeSimple-SQLinjection

- https://github.com/BjarneVerschorre/CVE-2019-9053

- https://github.com/Dh4nuJ4/SimpleCTF-UpdatedExploit

- https://github.com/Doc0x1/CVE-2019-9053-Python3

- https://github.com/ELIZEUOPAIN/CVE-2019-9053-CMS-Made-Simple-2.2.10---SQL-Injection-Exploit

- https://github.com/Ehxxb/Code

- https://github.com/Esther7171/THM-Walkthroughs

- https://github.com/Esther7171/TryHackMe-Walkthroughs

- https://github.com/FKouhai/simplectf

- https://github.com/Faridbg/THM_Simple_CTF

- https://github.com/FedericoTorres233/CVE-2019-9053-Fixed

- https://github.com/GandalfShark/simpleCTF

- https://github.com/H3xL00m/CVE-2019-9053

- https://github.com/Hackheart-tech/-exploit-lab

- https://github.com/Inf0eSec/THM-SimpleCTF

- https://github.com/J1ezds/Vulnerability-Wiki-page

- https://github.com/Jason-Siu/CVE-2019-9053-Exploit-in-Python-3

- https://github.com/Jason-Siu/Jason-Siu

- https://github.com/JuniorSixx/PentestWrite

- https://github.com/Kalidas-7/CVE-2019-9053

- https://github.com/KarimLedesmaHaron/THM-Tutoriales

- https://github.com/Mahamedm/CVE-2019-9053-Exploit-Python-3

- https://github.com/Mema90/Tryhackme

- https://github.com/Monerza/CMSMadeSimple-SQLinjection

- https://github.com/N3rdyN3xus/CVE-2019-9053

- https://github.com/Nish344/CTF-walkthroughs

- https://github.com/NyxByt3/CVE-2019-9053

- https://github.com/PuddinCat/GithubRepoSpider

- https://github.com/STERN3L/CVE-2019-9053

- https://github.com/SUNNYSAINI01001/46635.py_CVE-2019-9053

- https://github.com/SaintLukifer/Simple-CTF-walkthrough

- https://github.com/Slayerma/-CVE-2019-9053

- https://github.com/Sp3c73rSh4d0w/CVE-2019-9053

- https://github.com/Sp4ceDogy/CVE-2019-9053.python3

- https://github.com/Tara2805/THM_Simple-CTF

- https://github.com/TeymurNovruzov/CVE-2019-9053-python3-remastered

- https://github.com/Threekiii/Awesome-POC

- https://github.com/Threekiii/Vulhub-Reproduce

- https://github.com/Townie-au/simple-ctf

- https://github.com/X-3306/my-all-notes

- https://github.com/XiaomingX/awesome-poc-for-red-team

- https://github.com/Yzhacker/CVE-2019-9053-CMS46635-python3

- https://github.com/badmined/CMS-Made-Simple-sqli-python

- https://github.com/bthnrml/guncel-cve-2019-9053.py

- https://github.com/byrek/CVE-2019-9053

- https://github.com/c0d3cr4f73r/CVE-2019-9053

- https://github.com/catsecorg/CatSec-TryHackMe-WriteUps

- https://github.com/cloudkevin/HTB-Writeup

- https://github.com/connorsullivan-cyber/simple-ctf

- https://github.com/crypticdante/CVE-2019-9053

- https://github.com/cyberworm-uk/exploits

- https://github.com/d3athcod3/46635.py_CVE-2019-9053

- https://github.com/davcwikla/CVE-2019-9053-exploit

- https://github.com/deadgirlerg/CMS-Made-Simple-2.2.10---SQL-Injection

- https://github.com/del0x3/CVE-2019-9053-port-py3

- https://github.com/e-renna/CVE-2019-9053

- https://github.com/edisonrivera/HackTheBox

- https://github.com/fernandobortotti/CVE-2019-9053

- https://github.com/g1san/Agents-for-Vulnerable-Dockers-and-related-Benchmarks

- https://github.com/guest42069/exploits

- https://github.com/h3x0v3rl0rd/CVE-2019-9053

- https://github.com/h3xcr4ck3r/CVE-2019-9053

- https://github.com/hf3cyber/CMS-Made-Simple-2.2.9-Unauthenticated-SQL-Injection-Exploit-CVE-2019-9053-

- https://github.com/im-suman-roy/CVE-2019-9053

- https://github.com/jordansinclair1990/TryHackMeSimpleCTF

- https://github.com/jtoalu/CTF-CVE-2019-9053-GTFOBins

- https://github.com/k4u5h41/CVE-2019-9053

- https://github.com/kahluri/CVE-2019-9053

- https://github.com/kaizoku73/CVE-2019-9053

- https://github.com/kaushik-reddy/CVE-s-Working-Exploits

- https://github.com/lavanyaaaaaaa/ctfs

- https://github.com/louisthedonothing/CVE-2019-9053

- https://github.com/maraspiras/46635.py

- https://github.com/n0-traces/cve_monitor

- https://github.com/n3ov4n1sh/CVE-2019-9053

- https://github.com/n3rdh4x0r/CVE-2019-9053

- https://github.com/noob-hacker572/CMS-Made-Simple-2.2.9-CVE-2019-9053

- https://github.com/ompatel11/simplectf

- https://github.com/oplogix/Helpful-Scripts

- https://github.com/pedrojosenavasperez/CVE-2019-9053-Python3

- https://github.com/plzheheplztrying/cve_monitor

- https://github.com/sefamol/Simple-CTF

- https://github.com/so1icitx/CVE-2019-9053

- https://github.com/substing/simple_ctf

- https://github.com/tanjiti/sec_profile

- https://github.com/testermas/tryhackme

- https://github.com/tylerthompson1/SimpleCTF

- https://github.com/uttambodara/Awesome-Hacking-Learning-Path

- https://github.com/w3workerz/THM-Walkthroughs

- https://github.com/xtafnull/CMS-made-simple-sqli-python3

- https://github.com/zmiddle/Simple_CMS_SQLi