CVE-2004-0300

Online Store Kit 3.0 - SQL Injection via shop.php cat Parameter

Title source: llm

Exploitation Summary

EIP tracks 4 public exploits for CVE-2004-0300. PoCs published by G00db0y, David Sopas Ferreira.

AI-analyzed exploit summary The provided text describes a SQL injection vulnerability in Online Store Kit, where insufficient input sanitization allows attackers to manipulate database queries via the URI parameter 'cat_manufacturer'. This can lead to information disclosure, including administrator password hashes.

Description

SQL injection vulnerability in Online Store Kit 3.0 allows remote attackers to inject arbitrary SQL and gain unauthorized access via (1) the cat parameter in shop.php, (2) the id parameter in more.php, (3) the cat_manufacturer parameter in shop_by_brand.php, or (4) the id parameter in listing.php.

Exploits (4)

exploitdb WRITEUP VERIFIED

by G00db0y · textwebappsphp

https://www.exploit-db.com/exploits/23719

View Code ZIP pw:eip

The provided text describes a SQL injection vulnerability in Online Store Kit, where insufficient input sanitization allows attackers to manipulate database queries via the URI parameter 'cat_manufacturer'. This can lead to information disclosure, including administrator password hashes.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Theoretical

Target: Online Store Kit (version not specified)

No auth needed

Prerequisites: Access to the vulnerable endpoint · Knowledge of SQL injection techniques

MITRE ATT&CK

T1505 - Server Software Component T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WRITEUP VERIFIED

by G00db0y · textwebappsphp

https://www.exploit-db.com/exploits/23718

View Code ZIP pw:eip

The provided text describes a SQL injection vulnerability in Online Store Kit, where insufficient input sanitization allows attackers to manipulate database queries via the 'cat' parameter in the URI. This can lead to information disclosure, including the administrator password hash.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Theoretical

Target: Online Store Kit

No auth needed

Prerequisites: Access to the vulnerable web application

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WRITEUP VERIFIED

by G00db0y · textwebappsphp

https://www.exploit-db.com/exploits/23720

View Code ZIP pw:eip

The provided text describes a SQL injection vulnerability in Online Store Kit, where insufficient input sanitization allows attackers to manipulate database queries via the URI. It mentions the potential to disclose the administrator password hash but does not include actual exploit code.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Theoretical

Target: Online Store Kit

No auth needed

Prerequisites: Access to the vulnerable web application

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WRITEUP VERIFIED

by David Sopas Ferreira · textwebappsphp

https://www.exploit-db.com/exploits/23711

View Code ZIP pw:eip

The provided text describes SQL injection and XSS vulnerabilities in Online Store Kit 3.0 via the 'id' parameter in 'more.php'. It lacks executable exploit code but references known issues.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Theoretical

Target: Online Store Kit 3.0

No auth needed

Prerequisites: Access to the vulnerable 'more.php' script

MITRE ATT&CK