PT-2006-6746 · Candypress · Candypress Store
Benjamin Mossé
+1
·
Published
2006-11-26
·
Updated
2024-02-14
·
CVE-2006-6109
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
CandyPress Store version 3.5.2.14
Description
The issue concerns SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands. This can be achieved via the
policy parameter in "openPolicy.asp" or the brand parameter in "prodList.asp".Recommendations
For CandyPress Store version 3.5.2.14, consider restricting access to the vulnerable API endpoints "openPolicy.asp" and "prodList.asp" to minimize the risk of exploitation. Avoid using the
policy and brand parameters in these endpoints until the issue is resolved.Exploit
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Candypress Store