Security Information and Review

Collection of security information and review

CubeCart SQL Injection Vulnerability

Author : Admin

The latest vulnerabilities has been reported in CubeCart. With this vulnerability, an attacker can exploit CubeCart to manipulate and inject SQL queries. This vulnerability is caused input validation error in “includes/content/viewProd.inc.php” when processing the productId parameter. This issue is not going to happen if input passed to the productId parameter is properly sanitized before being used in SQL queries. This vulnerability is reported by sangteamtham and it’s confirmed in version 4.3.6 and prior versions may also be affected.

CubeCart is a fully featured ecommerce shopping cart solution used by over a million store owners around the world. CubeCart is an “out of the box” ecommerce shopping cart software solution which has been written to run on servers that have PHP & MySQL support. With CubeCart you can quickly setup a powerful online store which can be used to sell digital or tangible products to new and existing customers all over the world.
There are a great deal of powerful features enabling your business to trade online successfully. It is easy to modify the look and feel of your store to match your company’s branding or to site comfortably beside your existing website due to CubeCart’s powerful HTML template system. Our solutions are robust, flexible, affordable and are supported by not only a profitable and stable company but a thriving community of enthusiasts who are keen to recommend it and share their ideas and experience.

The best solution of this issue is edit file “includes/content/viewPro.inc.php” and sanitize productId parameter before being used in SQL queries. For more details, see code below.

1
2
3
4
5
6
7
8
9
10
11
12
13
14
 
	<?php
 
		………………..
 
		/* Before edit */
		$_GET[‘productId’] = sanitizeVar($_GET[‘productId’]);
 
		/* Relace with code below */
		$_GET[‘productId’] = (int)sanitizeVar($_GET[‘productId’]);
 
		……………..
 
	?>

If we can’t edit this file, the vendor of CubeCart has been released patches and we can upgrade to CubeCart version 4.3.7.

Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Netvouz
  • DZone
  • ThisNext
  • MisterWong
  • Wists
  • Technorati
  • YahooMyWeb
  • Slashdot
  • StumbleUpon
Categories: Web Application Security
If you like this posts, please leave messages / comments.