MidiCart ASP Item_Show.ASP ID2006quant Parameter SQL Injection Vulnerability

Bugtraq ID:	21273
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Nov 24 2006 12:00AM
Updated:	Nov 28 2006 04:00AM
Credit:	Aria-security is credited with the discovery of this vulnerability.
Vulnerable:	MidiCart Software MidiCart ASP Plus 0 MidiCart Software MidiCart ASP
Not Vulnerable:

MidiCart ASP Item_Show.ASP ID2006quant Parameter SQL Injection Vulnerability

MidiCart ASP is prone to an SQL injection vulnerability because it fails to properly sanitize user-supplied input before using it in an SQL query.

A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.

MidiCart ASP Item_Show.ASP ID2006quant Parameter SQL Injection Vulnerability

Attackers can exploit this issue via a web client.

The following proof-of-concept URI is available:

http://www.example.com/path/item_show.asp?id2006quant=[SQL INJECTION]

MidiCart ASP Item_Show.ASP ID2006quant Parameter SQL Injection Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected].

MidiCart ASP Item_Show.ASP ID2006quant Parameter SQL Injection Vulnerability

References:

• MidiCart Homepage (MidiCart Software)
  
• [Aria-Security Team] MidiCart ASP Plus Shopping Cart SQL Injection (Aria-Security)
  
• [Aria-Security Team] MidiCart ASP Shopping Cart SQL Injection (Aria-Security)