vendor:
Multi Vendor Mall
by:
CoBRa_21
8,8
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Multi Vendor Mall
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: Yes
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2020
Multi Vendor Mall (itemdetail.php & shop.php) SQL Injection Vulnerability
A SQL injection vulnerability exists in Multi Vendor Mall, which allows an attacker to execute arbitrary SQL commands on the underlying database. This vulnerability is present in the itemdetail.php and shop.php scripts. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing malicious SQL commands. This can be done by appending the malicious SQL commands to the itemid or storeid parameter in the URL. For example, an attacker can send a request like http://localhost/[path]/itemdetail.php?itemid=-39 union select 0,1,2,3,4,5,group_concat(EMAIL,0x3a3a,PASSWORD,0x3c62723e),7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24+from+members_tbl-- to exploit the vulnerability.
Mitigation:
The vendor has released a patch to address this vulnerability. It is recommended to upgrade to the latest version of the software.
