Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Echo Security Advisory 2005.21

🗓️ 25 Jun 2005 00:00:00Reported by Echo SecurityType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 29 Views

Echo Security Advisory 2005.21: Multiple Vulnerabilities in ActiveBuyAndSell applicatio

Code
`---------------------------------------------------------------------------  
[ECHO_ADV_21$2005] MUltiple Vulnarable In ActiveBuyAndSell  
---------------------------------------------------------------------------  
  
Author: Dedi Dwianto  
Date: June, 24th 2005  
Location: Indonesia, Jakarta  
Web: http://echo.or.id/adv/adv21-theday-2005.txt  
  
---------------------------------------------------------------------------  
  
Affected software description:  
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~  
  
Application : ActiveBuyAndSell  
version : 6.2  
URL : http://ActiveWebSoftwares.com  
Author : ActiveWebSoftwares  
Description :  
  
ActiveBuyAndSell is a Web-based application that connects people selling products   
and services with people looking to buy products and services. Uses MS SQL or   
Access database. Full ASp source code included.  
  
---------------------------------------------------------------------------  
  
Vulnerabilities:  
~~~~~~~~~~~~~~~~  
  
A. SQL Injection:  
  
* http://victim/ebuyandsell/default.asp?catid=[SQL inject]  
  
* http://victim/ebuyandsell/buyersend.asp?catid=[SQL inject]  
  
* http://victim/ebuyandsell/admin.asp  
In this pages vulnarable sql injection in form input  
  
POC :   
Administrator ID :[SQL Inject]  
Password :blank  
  
  
* http://victim/ebuyandsell/advertiserstart.asp  
  
POC :  
E-mail Address :[SQL inject]  
Password :blank  
  
* http://victim/ebuyandsell/buyer.asp  
  
POC :  
E-mail :[SQL inject]  
Password :blank  
  
* http://victim/ebuyandsell/search.asp  
  
POC :  
Keyword :[SQL inject]  
  
  
B. Xss  
  
* http://victim/ebuyandsell/sendpassword.asp?Table=Buyer&Title=[XSS]&EmailFld=BEmail  
  
POC :  
  
http://victim/ebuyandsell/sendpassword.asp?Table=Buyer&Title=<script>alert('test')</script>&EmailFld=BEmail  
  
* http://victim/ebuyandsell/search.asp  
  
POC :  
Keyword : <script>alert('dudul')</script>  
  
  
C. Fix  
  
Vendor allready contacted but still no response and i can't fix it because  
i can't view source code :lol  
  
---------------------------------------------------------------------------  
  
Shoutz:  
~~~~~~~  
  
~ y3dips, moby, comex, z3r0byt3, K-159, c-a-s-e, S`to, lirva32, anonymous  
~ Lieur Euy , MSR  
~ [email protected] ,  
~ #e-c-h-o@DALNET  
  
---------------------------------------------------------------------------  
Contact:  
~~~~~~~~  
  
the_day || echo|staff || the_day[at]echo[dot]or[dot]id  
Homepage: http://theday.echo.or.id/  
  
-------------------------------- [ EOF ] ----------------------------------  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
25 Jun 2005 00:00Current
0.3Low risk
Vulners AI Score0.3
sql injectionxssactivebuyandsellweb-based applicationms sqlaccess databasesecurity advisory
29