Mall23 AddItem.asp script SQL injection
| mall23-additem-sql-injection (22356) |  Medium Risk |
Description:
Mall23 is vulnerable to SQL injection. A remote attacker could send a specially-crafted SQL statement to the AddItem.asp script using the idOption_Dropdown_2 parameter, which would enable the attacker to obtain sensitive information, and add, modify or delete data in the backend database.
Consequences:
Data Manipulation
Remedy:
Upgrade to the latest version of Mall23 (4.11 or later), available from the Mall23 Web site. See References.
References:
- Mall23 Web site: Mall23.com - ASP eCommerce online store.
- SystemSecure Security Advisory- Mall23 SQL Injection (post method): SystemSecute dot org :: View Topic Mall23 SQL Injection SS# 21092005.
- BID-14898: Mall23 AddItem.ASP SQL Injection Vulnerability
- CVE-2005-3043: SQL injection vulnerability in AddItem.asp in Mall23 eCommerce allows remote attackers to execute arbitrary SQL commands via the idOption_Dropdown_2 parameter.
- OSVDB ID: 19595: Mall23 eCommerce AddItem.asp idOption_Dropdown_2 Variable SQL Injection
- SA16903: Mall23 eCommerce "idOption_Dropdown_2" SQL Injection Vulnerability
- VUPEN/ADV-2005-1811: Mall23 eCommerce AddItem.asp Remote SQL Injection Vulnerability
Platforms Affected:
- Mall23 Mall23
- Microsoft Windows 2000 Server
- Microsoft Windows 2003 Server
Reported:
Sep 22, 2005
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net