A vulnerability was found in Battleblog 1.0d/1.05/1.20/1.25. It has been classified as critical. Affected is some unknown functionality of the file comment.asp. The manipulation of the argument entry with an unknown input leads to a sql injection vulnerability. CWE is classifying the issue as CWE-89. The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. This is going to have an impact on confidentiality, integrity, and availability. CVE summarizes:

SQL injection vulnerability in comment.asp in Battle Blog 1.25 and earlier allows remote attackers to execute arbitrary SQL commands via the entry parameter.

The weakness was disclosed 06/09/2008 (Website). The advisory is available at milw0rm.com. This vulnerability is traded as CVE-2008-2626 since 06/09/2008. The exploitability is told to be easy. It is possible to launch the attack remotely. The exploitation doesn't require any form of authentication. Technical details and a public exploit are known. This vulnerability is assigned to T1505 by the MITRE ATT&CK project.

The exploit is shared for download at exploit-db.com. It is declared as highly functional. By approaching the search of inurl:comment.asp it is possible to find vulnerable targets with Google Hacking.

The vulnerability is also documented in the databases at X-Force (42818) and Exploit-DB (5731). The entry 42751 is pretty similar.

Productinfo

Name

• Battleblog

Version

• 1.0d
• 1.05
• 1.20
• 1.25

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion