Mall23 eCommerce infopage.asp idPage Variable SQL Injection

2005-09-10T08:17:11
ID OSVDB:19312
Type osvdb
Reporter David Sopas Ferreira(david@systemsecure.org)
Modified 2005-09-10T08:17:11

Description

Vulnerability Description

Mall23 contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'infopage.asp' script not properly sanitizing user-supplied input to the 'idPage' variable. This may allow a remote attacker to inject or manipulate SQL queries in the backend database.

Solution Description

Upgrade to version 4.09 or higher, as it has been reported to fix this vulnerability. In addition, Mall23 has released a patch (via the auto-update feature) for some older versions.

Short Description

Mall23 contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'infopage.asp' script not properly sanitizing user-supplied input to the 'idPage' variable. This may allow a remote attacker to inject or manipulate SQL queries in the backend database.

References:

Vendor URL: http://www.mall23.com/ Security Tracker: 1014882 Secunia Advisory ID:16778 Related OSVDB ID: 19313 Other Advisory URL: http://systemsecure.org/ssforum/viewtopic.php?t=219 Keyword: SS#10092005 ISS X-Force ID: 22230 CVE-2005-3039 Bugtraq ID: 14803