ShopEx an injection vulnerability fix is not complete-bug warning-the black bar safety net

ID MYHACK58:62201559937
Type myhack58
Reporter 佚名
Modified 2015-03-15T00:00:00


In the clouds to see this

So hand cheap points to open, found that the repair is not complete.

It turned out what seemed like protection are not, now parameter to add the double quotes and braces to protect, turned into("xxx")like this, can still be injected.

! [2. png](

! [1. png](

Vulnerability to prove:

! [1. png](

Repair solutions:

Can't repair the injection? on. Outrageous escape or filter all good..