Onlineon E-Ticaret Database Information Disclosure Vulnerability

Bugtraq ID:	69765
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Sep 10 2014 12:00AM
Updated:	Sep 10 2014 12:00AM
Credit:	ZoRLu
Vulnerable:	Onlineonweb E-Ticaret 0
Not Vulnerable:

Onlineon E-Ticaret Database Information Disclosure Vulnerability

Onlineon E-Ticaret is prone to an information-disclosure vulnerability.

An attacker can exploit this issue to gain access to the database content stored on the web server. Information harvested may aid in launching further attacks.

Onlineon E-Ticaret Database Information Disclosure Vulnerability

An attacker can exploit this issue using standard commands.

The following exploit is available:

• /data/vulnerabilities/exploits/69765.py

Onlineon E-Ticaret Database Information Disclosure Vulnerability

Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].

Onlineon E-Ticaret Database Information Disclosure Vulnerability

References:

• E-Ticaret Home page (Onlineonweb)