HIO-2010-1011 Avactis Shopping Cart 1.9.1 SQLi Vulnerability PDF Print E-mail

Avactis Shopping Cart 1.9.1 and earlier exhibits vulnerabillities which can be exploited by malicious people to conduct SQL injection attacks.

Input passed via the HTTP "User-Agent" header to various scripts e.g. index.php or product-list.php is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

The vulnerability is confirmed in version 1.9.1 build 8356 free edition. Other versions may also be affected.


References:

CVE-2010-4147

BID: 44104

OSVDB: 68646, 68647

SA: 41764

XF: 62559

Related: 

Vendor Solution: http://www.avactis.com/forums/index.php?showtopic=5317
 
< Prev   Next >
[ Back ]