Online Store Kit more.php SQL injection

onlinestorekit-more-sql-injection (15232) The risk level is classified as MediumMedium Risk

Description:

Online Store Kit Lite, Standard, and Pro are vulnerable to SQL injection, caused by a vulnerability in the more.php script. A remote attacker could pass malicious SQL commands to the id parameter of the more.php script, which could allow the attacker to obtain sensitive information and add, modify or delete information in the backend database.

Platforms Affected:

  • Ecommerce, Online Store Kit Lite 3.0 and prior
  • Ecommerce, Online Store Kit Pro 3.0 and prior
  • Ecommerce, Online Store Kit Standard 3.0 and prior
  • FreeBSD, FreeBSD
  • Microsoft, Windows 2000 Advanced Server

Remedy:

No remedy available as of November 29, 2008.

Consequences:

Data Manipulation

References:

  • SystemSecure.org Advisory 16-02-2004, Online Store Kit v3.0 SQL Injection at http://www.systemsecure.org/advisories/ssadvisory16022004.php.
  • BID-9676: Ecommerce Corporation Online Store Kit More.PHP Multiple Vulnerabilities
  • BID-9687: Ecommerce Corporation Online Store Kit Multiple SQL Injection Vulnerabilities
  • CVE-2004-0300: SQL injection vulnerability in Online Store Kit 3.0 allows remote attackers to inject arbitrary SQL and gain unauthorized access via (1) the cat parameter in shop.php, (2) the id parameter in more.php, (3) the cat_manufacturer parameter in shop_by_brand.php, or (4) the id parameter in listing.php.
  • OSVDB ID: 3973: Online Store Kit more.php id Variable SQL Injection
  • SA10902: Online Store Kit SQL Injection and Cross Site Scripting Vulnerability
  • SECTRACK ID: 1009092: Online Store Kit Input Validation Flaws in Several Scripts Permits SQL Injection

Reported:

Feb 17, 2004

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page