Active eCommerce CMS 6.5.0 SQL Injection

CVE Category Price Severity
CWE-89 Not specified High
Author Risk Exploitation Type Date
Unknown High Remote 2023-01-20

CVSS vector description

Our sensors found this exploit at:

Below is a copy:

Active eCommerce CMS 6.5.0 SQL Injection
                                     C r a C k E r                                    
                 T H E   C R A C K   O F   E T E R N A L   M I G H T                  

               From The Ashes and Dust Rises An Unimaginable crack....          

                                  [ Vulnerability ]                                   

:  Author   : CraCkEr                                                                    :
  Website  :                                                           
  Vendor   : ActiveITzone                                                               
  Software : Active eCommerce CMS 6.5.0                                                 
  Vuln Type: SQL Injection                                                              
  Impact   : Database Access                                                            


:                                                                                        :
 Release Notes:                                                                         
 SQL injection attacks can allow unauthorized access to sensitive data, modification of 
 data and crash the application or make it unavailable, leading to lost revenue and     
 damage to a company's reputation.                                                      



    The_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL   
CryptoJob (Twitter)

                                     CraCkEr 2023                                    

Path: /ecommerce/search

GET parameter 'keyword' is vulnerable to SQLI[INJECT-HERE]

[-] Done

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.