Joomla IXXO Cart SQL Injection

2010-07-09T00:00:00
ID PACKETSTORM:91638
Type packetstorm
Reporter Sid3 effects
Modified 2010-07-09T00:00:00

Description

                                        
                                            ` ======================================  
IXXO Cart for Joomla SQLi Vulnerability  
======================================  
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0  
0 _ __ __ __ 1  
1 /' \ __ /'__`\ /\ \__ /'__`\ 0  
0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1  
1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0  
0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1  
1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0  
0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1  
1 \ \____/ >> Exploit database separated by exploit 0  
0 \/___/ type (local, remote, DoS, etc.) 1  
1 1  
0 [+] Site : Inj3ct0r.com 0  
1 [+] Support e-mail : submit[at]inj3ct0r.com 1  
0 0  
1 ########################################## 1  
0 I'm Sid3^effects member from Inj3ct0r Team 1  
1 ########################################## 0  
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1  
  
Name : IXXO Cart for Joomla SQLi Vulnerability  
Date : july 9,2010  
Critical Level : HIGH  
vendor URL :http://www.php-shop-system.com/  
Author : Sid3^effects aKa HaRi  
special thanks to : r0073r (inj3ct0r.com),L0rd CruSad3r,MaYur,MA1201,KeDar,Sonic,gunslinger_  
greetz to :www.topsecure.net ,All ICW members and my friends :) luv y0 guyz  
#######################################################################################################  
Description  
IXXO Cart is an extremely powerful php shopping cart and web site builder application. Designed from a marketing perspective, this ecommerce application is feature-packed, robust, scalable and easy to use. IXXO Cart Plus is the clear choice for serious merchants focused on rapidly and cost effectively deploying, managing and growing a successful web-based business.  
New users appreciate the easy-to-use tools designed to help set up their store quickly and effectively while experienced users love the ability to customize and manage our software to meet the needs of their growing business.  
#######################################################################################################  
Xploit: SQli Vulnerability  
  
  
Demo url : http://site.com/ixxo-cart-plus-demo/index.php?p=catalog&parent=[SQLI]  
  
#######################################################################################################  
# 0day no more  
# Sid3^effects  
  
`