WebApp Sec mailing list archives
VirtueMart eCommerce for Joomla <= 1.1.6 Blind SQL Injection
From: Andrea Fabrizi <andrea.fabrizi () gmail com>
Date: Mon, 31 Jan 2011 10:35:15 +0100
************************************************************** Application: VirtueMart Version affected: <= 1.1.6 Website: http://www.virtuemart.net/ Discovered By: Andrea Fabrizi Email: andrea.fabrizi () gmail com Web: http://www.andreafabrizi.it Vuln: Blind SQL Injection ************************************************************** Blind SQL Injection found in "search_category" parameter. Example: http://127.0.0.1/index.php?category_id=&page=shop.browse&option=com_virtuemart&Itemid=1&keyword1=hand&search_op=and&keyword2=&search_limiter=anywhere&search=Search&search_category=3 AND $BLIND_SQL -- EXPLOIT: http://www.andreafabrizi.it/download.php?file=virtuemart_sql_exploit.sh This list is sponsored by Cenzic -------------------------------------- Let Us Hack You. Before Hackers Do! It's Finally Here - The Cenzic Website HealthCheck. FREE. Request Yours Now! http://www.cenzic.com/2009HClaunch_Securityfocus --------------------------------------
Current thread:
- VirtueMart eCommerce for Joomla <= 1.1.6 Blind SQL Injection Andrea Fabrizi (Jan 31)