Info

Disclosure

Apr 23, 2005

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

CartWIZ contains a flaw that may allow an attacker to inject arbitrary SQL queries. The issue is due to the 'idProduct' variable in the productDetails.asp script not being properly sanitized and may allow an attacker to inject or manipulate SQL queries.

Classification

Location: Remote/Network Access Required
Attack Type: Information Disclosure, Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Exploit: Exploit Available
OSVDB: Web Related

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Elemental Software, Inc.

CartWIZ

1.1

References

Security Tracker: 1013792
Secunia Advisory ID: 15055
Related OSVDB ID: 15771 15773 15774 15775 15776 15777 15778 15779 15780
CVE ID: 2005-1291 (see also: NVD)
ISS X-Force ID: 20246
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-04/0385.html
http://marc.theaimsgroup.com/?l=bugtraq&m=111428393022389&w=2
Vendor URL: http://www.cartwiz.com/
Other Advisory URL: http://www.digitalparadox.org/advisories/cartwiz.txt

Credit

Diabolic Crab - dcrabhackerscenter.com - Personal Page

Direct URL: http://osvdb.org/36218