BID:31023

Zen Cart Multiple SQL Injection Vulnerabilities

Info

Zen Cart Multiple SQL Injection Vulnerabilities

Bugtraq ID:	31023
Class:	Input Validation Error
CVE:	CVE-2008-6985
Remote:	Yes
Local:	No
Published:	Sep 04 2008 12:00AM
Updated:	May 07 2015 05:24PM
Credit:	James Bercegay of the GulfTech Security Research Team
Vulnerable:	Zen Cart Web Shopping Cart 1.3.8 Zen Cart Web Shopping Cart 1.3.7 Zen Cart Web Shopping Cart 1.3.6 Zen Cart Web Shopping Cart 1.3.5 Zen Cart Web Shopping Cart 1.3.2 Zen Cart Web Shopping Cart 1.2.7 Zen Cart Web Shopping Cart 1.2.6 d Zen Cart Web Shopping Cart 1.2 Zen Cart Web Shopping Cart 1.3.8a Zen Cart Web Shopping Cart 1.3.0.2

Not Vulnerable:

Discussion

Zen Cart Multiple SQL Injection Vulnerabilities

Zen Cart is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.

Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

Zen Cart 1.2.0 through 1.3.8a are vulnerable.

Exploit / POC

Zen Cart Multiple SQL Injection Vulnerabilities

Attackers can use a browser to exploit these issues.

Solution / Fix

Zen Cart Multiple SQL Injection Vulnerabilities

Solution:
The vendor has released a patch. Please see the references for more information.

References

Zen Cart Multiple SQL Injection Vulnerabilities

References:

Zen Cart Homepage (Zen Cart)
Zen Cart <= 1.3.8a SQL Injection (GulfTech Security Research )
Security Alert: SQL Injection Risk (Zen Cart)