LiteCommerce Multiple SQL Injection Vulnerabilities
BID:13044
CVE-2005-1032 |Info
LiteCommerce Multiple SQL Injection Vulnerabilities
| Bugtraq ID: | 13044 |
| Class: | Input Validation Error |
| CVE: |
CVE-2005-1032 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 06 2005 12:00AM |
| Updated: | Aug 27 2007 07:12PM |
| Credit: | Discovery is credited to Diabolic Crab dcrab <[email protected]>. |
| Vulnerable: |
LiteCommerce LiteCommerce |
| Not Vulnerable: | |
Discussion
LiteCommerce Multiple SQL Injection Vulnerabilities
LiteCommerce is reportedly affected by multiple SQL injection vulnerabilities.
These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks.
Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.
All versions of LiteCommerce are considered to be affected at the moment.
LiteCommerce is reportedly affected by multiple SQL injection vulnerabilities.
These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks.
Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.
All versions of LiteCommerce are considered to be affected at the moment.
Exploit / POC
LiteCommerce Multiple SQL Injection Vulnerabilities
An exploit is not required.
The following proof of concept examples are available:
http://www.example.com/test/cart.php?target='PHP_SCRIPT_EXPOSUREPHP_SCRIPT_EXPOSURE
http://www.example.com/test/cart.php?target=category&category_id='SQL_INJECTION
http://www.example.com/test/cart.php?target=product&product_id='SQL_INJECTION&category_id=246
An exploit is not required.
The following proof of concept examples are available:
http://www.example.com/test/cart.php?target='PHP_SCRIPT_EXPOSUREPHP_SCRIPT_EXPOSURE
http://www.example.com/test/cart.php?target=category&category_id='SQL_INJECTION
http://www.example.com/test/cart.php?target=product&product_id='SQL_INJECTION&category_id=246
Solution / Fix
LiteCommerce Multiple SQL Injection Vulnerabilities
Solution:
The vendor released patch 'lc_security_fix_20070824.zip' to address these issues. Please contact the vendor for information on how to obtain and apply this update.
Solution:
The vendor released patch 'lc_security_fix_20070824.zip' to address these issues. Please contact the vendor for information on how to obtain and apply this update.
References
LiteCommerce Multiple SQL Injection Vulnerabilities
References:
References:
- LiteCommerce Home Page (LiteCommerce)
- LiteCommerce Sql injection and reveling errors vulnerability (dcrab