eSikker.dk

Sårbarhed Detalje Syn
Legend : critical high medium low other
id 43159
Risiko other
Familie CGI abuses
Kategori attack
Navn phpShop shop/flypage SQL Injection
Sammenfatning Attempts a SQL injection attack
Beskrivelse Synopsis :

The shopping cart application running on the remote web server has a
SQL injection vulnerability.

Description :

The version of phpShop running on the remote host has a SQL injection
vulnerability. Input to the 'product_id' parameter of 'shop/flypage'
is not properly sanitized. A remote attacker could exploit this to
issue arbitrary queries that could be used to control the database or
mount further attacks. This attack only works if 'magic_quotes_gpc'
is disabled in php.ini.

This verison of phpShop reportedly has several other vulnerabilities,
though Nessus has not checked for those issues.

See also :

http://archives.neohapsis.com/archives/bugtraq/2008-02/0014.html

Solution :

Enable magic_quote_gpc in php.ini.

Risk factor :

Medium / CVSS Base Score : 6.8
(CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P)
CVE CVE-2008-0681
Bugtraq 27570,37227
Copyright (C) 2009 Tenable Network Security, Inc.
116
 PCbix kan findes hos twitter PC håndværkeren - Er din PC i stykker? Banken lukkede din netbank? Har din PC virus? Ekstern USB harddisk kasse med eller uden harddisk. Lillekilde i Valby Studiehuset Ole Opfinder Hosted by FLIFL
design by Pingvino