Info

Disclosure

Aug 09, 2005

Discovery

Unknown

Dates

Exploit

Aug 09, 2005

Solution

Unknown

Description

FreznoShop contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'product_details.php' script not properly sanitizing user-supplied input to the 'id' variable. This may allow a remote attacker to inject or manipulate SQL queries in the backend database.

Classification

Location: Remote/Network Access Required
Attack Type: Information Disclosure, Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Exploit: Exploit Available
OSVDB: Web Related

Solution

Upgrade to version 1.4.1 (2005-08-09) or higher, as it has been reported to fix this vulnerability. Note that this flaw was fixed in the 2005-08-09 release without a change in version number. Additionally, Uwe E. Schirm has released a patch to address this vulnerability.

Products

Uwe E. Schirm	FreznoShop	1.0.0
		1.1.0
		1.2.x
		1.4.1

References

Vendor Specific Solution URL: http://freznoshop.de/forum/index.php?PHPSESSID=5f17d3eed77c33892c950a28d463cd10&t ......
Other Advisory URL: http://osvdb.org/ref/18/18686-freznoshop.txt
Vendor URL: http://www.freznoshop.de/

Credit

Mike Shema -

Direct URL: http://osvdb.org/36218