Signature Detail

HTTP: phpMyShop SQL Injection Vulnerability

This signature detects attempts to exploit a SQL injection vulnerability in the phpMyShop package. phpMyShop 1.00 and earlier versions are vulnerable. Attackers can submit a maliciously crafted URL to the Web server to bypass authorization.

Extended Description

phpMyShop, in some cases, does not sufficiently sanitize user-supplied input which is used when constructing SQL queries. As a result, attackers may supply malicious parameters to manipulate the structure and logic of SQL queries. This vulnerability was reported to exist in the compte.php script file. A remote attacker can exploit this vulnerability to bypass the phpMyShop authentication/registration process.

Affected Products

• Julien Desaunay phpMyShop 1.0.0

References

• BugTraq: 6746
• URL: http://www.securiteam.com/unixfocus/5KP031F9FC.html
• URL: http://www.juniper.net/security/auto/vulnerabilities/vuln2303.html
• URL: http://www.net-security.org/vuln.php?id=2408