vendor:
EPay Enterprise
by:
Ihsan Sencan
7,5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: EPay Enterprise
Affected Version From: 5.17
Affected Version To: 5.17
Patch Exists: NO
Related CWE: N/A
CPE: a:alstrasoft:epay_enterprise:5.17
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Win7 x64, Kali Linux x64
2017
Alstrasoft EPay Enterprise v5.17 Script – SQL Injection
Alstrasoft EPay Enterprise v5.17 Script is vulnerable to SQL Injection. Attackers can exploit this vulnerability by sending malicious SQL queries to the vulnerable web application. This can be done by sending specially crafted requests to the vulnerable web application. The vulnerable parameters are 'id' in userinfo.htm, products.htm and subscriptions.htm. An authentication bypass vulnerability is also present in the login.htm page, where attackers can set the Username and Password to 'or''=' and hit enter.
Mitigation:
Developers should ensure that user input is properly sanitized and validated before being used in SQL queries. Input validation should be done on both client-side and server-side.
