CVE-2021-41649
published 2021-10-01CVE-2021-41649: An un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /homeaction.php cat_id parameter. Using a post request…
PriorityP183critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
51.77%
98.8th percentile
An un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /homeaction.php cat_id parameter. Using a post request does not sanitize the user input.
Detection & IOCsextracted from sources · hover to see the quote
commandPOST /homeaction.php body: cat_id=4'&get_seleted_Category=1
- →Send a POST request to /homeaction.php with a SQL-injected cat_id parameter (e.g., cat_id=4') and look for PHP/mysqli error strings in the response body to confirm exploitation.
- →The vulnerability is unauthenticated and triggered via HTTP POST; no session or authentication token is required to exploit the cat_id parameter in /homeaction.php. ↗
- →A 200 HTTP status code combined with the mysqli error string in the body is a reliable indicator of successful SQL injection triggering on this endpoint.
- ·The Nuclei template targets {{BaseURL}}/homeaction.php with a single POST request (max-request: 1); detection relies on error-based SQL injection response disclosure, meaning hardened or error-suppressed deployments may not return the triggering strings.
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vulncheck9.8CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-2wch-qhpr-mqp5: An un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /homeaction
ghsa_unreviewed·2022-05-24
CVE-2021-41649 [CRITICAL] CWE-89 GHSA-2wch-qhpr-mqp5: An un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /homeaction
An un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /homeaction.php cat_id parameter. Using a post request does not sanitize the user input.
VulnCheck
online-shopping-system-advanced_project online-shopping-system-advanced Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
vulncheck·2021·CVSS 9.8
CVE-2021-41649 [CRITICAL] online-shopping-system-advanced_project online-shopping-system-advanced Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
online-shopping-system-advanced_project online-shopping-system-advanced Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
An un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /homeaction.php cat_id parameter. Using a post request does not sanitize the user input.
Affected: online-shopping-system-advanced_project online-shopping-system-advanced
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://dashboard.shadowserver.org/statistics/honeypot/vulnerability/map/?day=2024-01-22&host_type=src&vulnerability=cve-2021-41649; https://dashboard.shadowserver.org/statistics/honey
No detection rules found.
Nuclei
PuneethReddyHC Online Shopping System homeaction.php SQL Injection
nuclei·CVSS 9.8
CVE-2021-41649 [CRITICAL] PuneethReddyHC Online Shopping System homeaction.php SQL Injection
PuneethReddyHC Online Shopping System homeaction.php SQL Injection
An unauthenticated SQL injection vulnerability exists in PuneethReddyHC Online Shopping System through the /homeaction.php cat_id parameter. Using a post request does not sanitize the user input.
Template:
id: CVE-2021-41649
info:
name: PuneethReddyHC Online Shopping System homeaction.php SQL Injection
author: daffainfo
severity: critical
description: An unauthenticated SQL injection vulnerability exists in PuneethReddyHC Online Shopping System through the /homeaction.php cat_id parameter. Using a post request does not sanitize the user input.
impact: |
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary SQL queries, potentially leading to unauthorized access, data leakage, or data
Nuclei
PuneethReddyHC action.php SQL Injection
nuclei·CVSS 7.5
CVE-2021-41648 [HIGH] PuneethReddyHC action.php SQL Injection
PuneethReddyHC action.php SQL Injection
An unauthenticated SQL injection vulnerability exists in PuneethReddyHC Online Shopping through the /action.php prId parameter. Using a post request does not sanitize the user input.
Template:
id: CVE-2021-41648
info:
name: PuneethReddyHC action.php SQL Injection
author: daffainfo
severity: high
description: An unauthenticated SQL injection vulnerability exists in PuneethReddyHC Online Shopping through the /action.php prId parameter. Using a post request does not sanitize the user input.
impact: |
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary SQL queries, potentially leading to unauthorized access, data leakage, or data manipulation.
remediation: |
Upgrade to the latest version to mitigate this vulnera
No writeups or analysis indexed.
https://awesomeopensource.com/project/PuneethReddyHC/online-shopping-systemhttps://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-41649https://streamable.com/aii806https://streamable.com/mnn7dnhttps://awesomeopensource.com/project/PuneethReddyHC/online-shopping-systemhttps://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-41649https://streamable.com/aii806https://streamable.com/mnn7dn
2021-10-01
Published
Exploited in the wild