facebook facebook twitter rss

opencart v1.5.2 Arabic Multi Vulnerability

Author: indoushka , Published: 25-10-2014
opencart v1.5.2 Arabic Multi Vulnerability
==========================================
Author : indoushka
Vondor : http://www.alfnyhost.com/
Dork: Powered By OpenCart 2014
==================================================

CRLF injection/HTTP response splitting :

Vulnerability description
This script is possibly vulnerable to CRLF injection attacks.

HTTP headers have the structure "Key: Value", where each line is separated by the CRLF combination. If the user input is injected into the value section without properly escaping/removing CRLF characters it is possible to alter the HTTP headers structure.
HTTP Response Splitting is a new application attack technique which enables various new attacks such as web cache poisoning, cross user defacement, hijacking pages with sensitive user information and cross-site scripting (XSS). The attacker sends a single HTTP request that forces the web server to form an output stream, which is then interpreted by the target as two HTTP responses instead of one response.
This vulnerability affects /upload/index.php.
Discovered by: Scripting (CRLF_Injection.script).
Attack details
POST (multipart) input redirect was set to SomeCustomInjectedHeader:tested_by_taz
Injected header found:

SomeCustomInjectedHeader: tested_by_taz

Cross site scripting :

This vulnerability affects /upload/index.php.

Discovered by: Scripting (XSS.script).
Attack details
URL encoded GET input product_id was set to 42_931198'():;966320
The input is reflected inside <script> tag between single quotes.



Like us on Facebook :