Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-2579

Overview

Vulnerability Score 6.5 6.5
CVE Id CVE-2009-2579
Last Modified 10 Sep 2009 12:22:15
Published 05 Aug 2009 03:30:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2009-2579

Summary

SQL injection vulnerability in reward_points.post.php in the Reward points addon in CS-Cart before 2.0.6 allows remote authenticated users to execute arbitrary SQL commands via the sort_order parameter in a reward_points.userlog action to index.php, a different vulnerability than CVE-2005-4429.2.

Vulnerable Systems

Application

  • Cs-cart 1.1

  • Cs-cart 1.2

  • Cs-cart 1.3.0

  • Cs-cart 1.3.2

  • Cs-cart 1.3.3

  • Cs-cart 1.3.5

  • Cs-cart 1.3.5sp2

  • Cs-cart 1.3.5sp3

  • Cs-cart 2.0

  • Cs-cart 2.0.4

  • Cs-cart 2.0.5


References

BID - 35936

BUGTRAQ - 20090804 [BONSAI] SQL Injection in CS-Cart

CONFIRM - http://www.cs-cart.com/changelog206.html

MISC - http://www.bonsai-sec.com/research/vulnerabilities/cs-cart_SQL-injection-0100.txt

SECUNIA - 36112


Last Updated: 27 May 2016 10:50:58