iBoutique SQL Vulnerable & XSS Vulnerability

vendor:

iBoutique

by:

L0rd CrusAd3r aka VSN

5.5

CVSS

MEDIUM

SQLi, XSS

89, 79

CWE

Product Name: iBoutique

Affected Version From: 4

Affected Version To: 4

Patch Exists: NO

Related CWE:

CPE: a:netartmedia:iboutique:4

Metasploit:

Other Scripts:

Platforms Tested:

2010

iBoutique SQL Vulnerable & XSS Vulnerability

iBoutique is a PHP ecommerce solution that allows you to setup and maintain your own estore. It has a SQLi vulnerability and an XSS vulnerability. The SQLi vulnerability can be exploited by manipulating the 'page' parameter in the index.php file. The XSS vulnerability can be exploited by injecting malicious script code into the 'page' parameter in the index.php file.

Mitigation:

To mitigate the SQLi vulnerability, ensure that all user input is properly sanitized and validated before being used in SQL queries. To mitigate the XSS vulnerability, ensure that all user input is properly sanitized and validated before being displayed on web pages.

Source

Exploit-DB raw data:

1               ##########################################             1
0               I'm L0rd CrusAd3r member from Inj3ct0r Team            1
1               ##########################################             0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1
Author: L0rd CrusAd3r aka VSN [crusader_hmg@yahoo.com]
Exploit Title:iBoutique SQL Vulnerable & XSS Vulnerability 
Vendor url:http://www.netartmedia.net/iboutique/
Version:4	
Price:299$
Published: 2010-06-21
Greetz to:r0073r (inj3ct0r.com), Sid3^effects, MaYur, MA1201, Sonic Bluehat.
Special Greetz: Topsecure.net, inj3ct0r Team
Shoutzz:- To all ICW members

~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~
Description:

iBoutique is a PHP ecommerce solution that allows you to setup and maintain your own estore. Features include simple user interface, easy product detail maintenance, shoping carts, template managing, statistic reporting, and much more. Code: PHP 4.0 

~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~

Vulnerability:

*SQLi Vulnerability

DEMO URL :

http://server/iboutique/index.php?page=[sqli]

*XSS Vulnerability

DEMO URL:

Parameter:'"--><script>alert(0x000872)</script>

http://server/iboutique/index.php?page=[xss]


# 0day n0 m0re #
# L0rd CrusAd3r #