what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

PHPShop 0.8.1 Cross Site Scripting

PHPShop 0.8.1 Cross Site Scripting
Posted Feb 25, 2011
Authored by Aung Khant | Site yehg.net

PHPShop versions 0.8.1 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | a25bef9b70e1ce9498c17a7a5c93f602c1a3332be03b85ec863193217dd67c26

PHPShop 0.8.1 Cross Site Scripting

Change Mirror Download
========================================
PHPShop 0.8.1 <= | Cross Site Scripting Vulnerability
========================================


1. OVERVIEW

The PHPShop 0.8.1 and lower versions are currently vulnerable to Cross
Site Scripting.


2. BACKGROUND

PHPShop is a PHP-powered shopping cart application. It is released
under the GNU General Public License.
The primary purpose of PHPShop is to provide a simple shopping cart
solution that is easy to customize to suit any purpose. PHPShop has
less features that many other shopping cart applications, but is
generally easier to customize.


3. VULNERABILITY DESCRIPTION

The Query String was not properly sanitized upon submission to the
/index.php url, which allows attacker to conduct Cross Site Scripting
attack.
This may allow an attacker to create a specially crafted URL that
would execute arbitrary script code in a victim's browser.


4. VERSIONS AFFECTED

PHP 0.8.1 <=


5. PROOF-OF-CONCEPT/EXPLOIT

http://localhost/phpshop0_8_1/?page=store/XSS&%26%26%22%3E%3Cscript%3Ealert%28/xss/%29%3C/script%3E%3d1


6. SOLUTION

The vendor has discontinued this product.
It is recommended that an alternate software package be used in its place.


7. VENDOR

PHPShop Development Team
http://phpshop.org


8. CREDIT

This vulnerability was discovered by Aung Khant, http://yehg.net, YGN
Ethical Hacker Group, Myanmar.


9. DISCLOSURE TIME-LINE

2011-02-25: vulnerability disclosed


10. REFERENCES

Original Advisory URL:
http://yehg.net/lab/pr0js/advisories/[phpshop_0.8.1]_cross_site_scripting
Project Home: http://code.google.com/p/phpshop/,
http://sourceforge.net/projects/phpshop/
PHPShop Download Stats:
http://sourceforge.net/projects/phpshop/files/phpshop/0.8.1/stats/timeline?dates=2010-01-01+to+2010-01-01
XSS (owasp): http://www.owasp.org/index.php/Cross-site_Scripting_(XSS)
CWE-79: http://cwe.mitre.org/data/definitions/79.html


#yehg [2011-02-25]

---------------------------------
Best regards,
YGN Ethical Hacker Group
Yangon, Myanmar
http://yehg.net
Our Lab | http://yehg.net/lab
Our Directory | http://yehg.net/hwd

Login or Register to add favorites

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    48 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    60 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    44 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close