Published: 03/10/2018 Updated: 19/11/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 757

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

SQL Injection in login.php in Naviwebs Navigate CMS 2.8 allows remote malicious users to bypass authentication via the navigate-user cookie.

Vulnerable Product	Search on Vulmon	Subscribe to Product
naviwebs navigate cms 2.8

Check Point Reference: CPAI-2018-2625 Date Published: 22 Nov 2023 Severity: Critical ...

## # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient def initialize(info = {}) super(update_info(info, 'Name' => 'Navigate CMS Un ...

Detect SQLInjection With Pyshark Project is used for detect SQL Injection from CVE-2018-17552 Table of Contents General Technologies used Features Screenshots Setup Usage Acknowledgements General Project for detecting and alert to the user when navigate is attacked with sql injection based on CVE-2018-17552 Technologies used Pyshark Python 3 above Features Capture pac

CVE-2018-17553 PoC

CVE-2018-17553 CVE-2018-17553 PoC (Navigate CMS version 28 and prior) This proof of concept was put together when working on the Black Pearl box from TCM I couldn't find anyone that put out a PoC other than just using Metasploit As I'm avoiding Metasploit in my hacking journey to then go back and do everything all over again with it, I whipped this together quick

Navigate-CMS-RCE -Unauthenticated- This module exploits insufficient sanitization in the database::protect method, of Navigate CMS versions 28 This script exploits: CVE 2018-17552 # Authentication bypass CVE 2018-17553 # File upload Use Mode wget rawgithubusercontentcom/0x4r2/Navigate-CMS-RCE-Unauthenticated-/main/navigate_RCEsh /navigate_RCEsh navigatorhm

POC +report note

CVE-2018-17552 View doc here docsgooglecom/document/d/1Enu58910099gFJ24AGkOtnJoQgtAibm2/edit?usp=sharing&ouid=116617095858459545855&rtpof=true&sd=true

This module exploits insufficient sanitization in the database::protect method, of Navigate CMS versions 2.8

Navigate-CMS-RCE -Unauthenticated- This module exploits insufficient sanitization in the database::protect method, of Navigate CMS versions 28 This script exploits: CVE 2018-17552 # Authentication bypass CVE 2018-17553 # File upload Use Mode wget rawgithubusercontentcom/0x4r2/Navigate-CMS-RCE-Unauthenticated-/main/navigate_RCEsh /navigate_RCEsh navigatorhm

This module exploits insufficient sanitization in the database::protect method, of Navigate CMS versions 2.8

Navigate-CMS-RCE -Unauthenticated- This module exploits insufficient sanitization in the database::protect method, of Navigate CMS versions 28 This script exploits: CVE 2018-17552 # Authentication bypass CVE 2018-17553 # File upload Use Mode wget rawgithubusercontentcom/0x4r2/Navigate-CMS-RCE-Unauthenticated-/main/navigate_RCEsh /navigate_RCEsh navigatorhm

CWE-89 https://github.com/rapid7/metasploit-framework/pull/10704 https://github.com/NavigateCMS/Navigate-CMS/commit/6df73ccca64253a5e81c23356943fae50ffc836f https://www.exploit-db.com/exploits/45561/https://nvd.nist.gov https://www.exploit-db.com/exploits/45561/https://github.com/MidwintersTomb/CVE-2018-17553 https://advisories.checkpoint.com/defense/advisories/public/2023/cpai-2018-2625.html

CVE-2018-17552

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect