by r0t,der4444,cembo,VietMafia

Wednesday, November 23, 2005

Commodity Rentals 2.x "user_id" Sql inj.

Commodity Rentals "user_id" Sql inj.

Vuln. dicovered by : r0t
Date: 23 nov. 2005
Vendor:http://www.commodityrentals.com/
affected version: 2.x and prior
Product Description:
CommodityRentals is the most comprehensive Online Rental Business Creator script today. It comes with a full E-Commerce Capacity and is ready to go, out of the box. It can get your Online Rentals business up and running within a matter of hours. Built on a fully extendible and customizable platform, CommodityRentals makes use of an open attribute architecture, allowing you to add your own rental attributes and create your own customized version of your online rental business.

Vuln Description:

Input passed to the "user_id" parameter in "usersession" isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.


Solution:
Edit the source code to ensure that input is properly sanitised.

0 Comments:

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew