CVE-2010-2694
published 2010-07-12CVE-2010-2694: SQL injection vulnerability in the redSHOP Component (com_redshop) 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the pid…
PriorityP344high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
0.98%
57.8th percentile
SQL injection vulnerability in the redSHOP Component (com_redshop) 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the pid parameter to index.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| redcomponent | com_redshop | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Joomla! Component redSHOP 1.2 - SQL Injection
exploitdb·2013-08-12
CVE-2010-2694 Joomla! Component redSHOP 1.2 - SQL Injection
Joomla! Component redSHOP 1.2 - SQL Injection
---
Joomla! redSHOP component v1.2 SQL Injection
== Description ==
- Product: Joomla! redSHOP component
- Product link: http://redcomponent.com/redcomponent/redshop
- Vendor: redcomponent
- Affected versions: version 1.2 is vulnerable. Other versions might
be affected as well.
- Vulnerability discovered by: Matias Fontanini
== Vulnerability ==
When using the "addtocompare" task, the component does not correctly
sanitize the "pid" parameter before using it to construct SQL queries,
making it vulnerable to SQL Injection attacks.
The following proof of concept request retrieves the database user,
name and version:
http://example.com/index.php?tmpl=component&option=com_redshop&view=product&task=addtocompare&pid=24%22%20and%201=0%20union%20sel
Exploit-DB
Joomla! Component redSHOP 1.0 - 'pid' SQL Injection
exploitdb·2010-07-10
CVE-2010-2694 Joomla! Component redSHOP 1.0 - 'pid' SQL Injection
Joomla! Component redSHOP 1.0 - 'pid' SQL Injection
---
) ) ) ( ( ( ( ( ) )
( /(( /( ( ( /( ( ( ( )\ ))\ ) )\ ))\ ) )\ ) ( /( ( /(
)\())\()))\ ) )\()) )\ )\ )\ (()/(()/( ( (()/(()/((()/( )\()) )\())
((_)((_)\(()/( ((_)((((_)( (((_)(((_)( /(_))(_)) )\ /(_))(_))/(_))(_)\|((_)\
__ ((_)((_)/(_))___ ((_)\ _ )\ )\___)\ _ )\(_))(_))_ ((_)(_))(_)) (_)) _((_)_ ((_)
\ \ / / _ (_)) __\ \ / (_)_\(_)(/ __(_)_\(_) _ \| \| __| _ \ | |_ _|| \| | |/ /
\ V / (_) || (_ |\ V / / _ \ | (__ / _ \ | /| |) | _|| / |__ | | | .` | ' <
|_| \___/ \___| |_| /_/ \_\ \___/_/ \_\|_|_\|___/|___|_|_\____|___||_|\_|_|\_\
.WEB.ID
Joomla Component com_redshop 1.0 (pid) SQL Injection Vulnerability
Author : v3n0m
Site : http://yogyacarderlink.web.id/
Date : July, 10-2010
Location : Jakarta, Indonesia
Time Zone : GMT +7:00
Af
No writeups or analysis indexed.
http://secunia.com/advisories/40535http://www.exploit-db.com/exploits/14312http://www.securityfocus.com/bid/41533http://www.vupen.com/english/advisories/2010/1776http://secunia.com/advisories/40535http://www.exploit-db.com/exploits/14312http://www.securityfocus.com/bid/41533http://www.vupen.com/english/advisories/2010/1776
2010-07-12
Published