Lighthouse Development Squirrelcart SQL Injection Vulnerability

Bugtraq ID:	12944
Class:	Input Validation Error
CVE:	CVE-2005-0962
Remote:	Yes
Local:	No
Published:	Mar 29 2005 12:00AM
Updated:	Jul 12 2009 11:56AM
Credit:	Discovery is credited to Diabolic Crab <[email protected]>.
Vulnerable:	Lighthouse Development Squirrelcart 1.5.5
Not Vulnerable:	Lighthouse Development Squirrelcart 1.6

Lighthouse Development Squirrelcart SQL Injection Vulnerability

Squirrelcart is affected by an SQL injection vulnerability.

This vulnerability could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks.

Squirrelcart 1.5.5 and prior versions are vulnerable to this issue.

Lighthouse Development Squirrelcart SQL Injection Vulnerability

No exploit is required.

The following proof of concept is available:

http://www.example.com/index.php?crn='SQL_INJECTION&action=show&show_products_mode=cat_click&PHPSESSID=2069dbe1646bdc46e4e78718e76e6d15

Lighthouse Development Squirrelcart SQL Injection Vulnerability

Solution:
The vendor has released patches for Squirrelcart 1.5.5 and prior versions. Squirrelcart 1.6.0 has been released as an upgrade as well. Please contact the vendor to obtain a patch or upgrade.

Lighthouse Development Squirrelcart SQL Injection Vulnerability

References:

• Squirrelcart (Lighthouse Development)