CVE-2004-1881

CactuShop 5.x - SQL Injection via strItems Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-1881. PoCs published by Nick Gudov.

AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in CactuShop, allowing an attacker to execute arbitrary SQL commands, including the execution of system commands via `xp_cmdshell`. The PoC includes URLs that inject malicious SQL queries to list directory contents or execute arbitrary commands.

Description

SQL injection vulnerability in (1) mailorder.asp or (2) payonline.asp in CactuShop 5.x allows remote attackers to execute arbitrary SQL commands via the strItems parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nick Gudov · textwebappsasp

https://www.exploit-db.com/exploits/23898

View Code ZIP pw:eip

This exploit demonstrates a SQL injection vulnerability in CactuShop, allowing an attacker to execute arbitrary SQL commands, including the execution of system commands via `xp_cmdshell`. The PoC includes URLs that inject malicious SQL queries to list directory contents or execute arbitrary commands.

Classification

Working Poc 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: CactuShop (version not specified)

No auth needed

Prerequisites: Access to the target application's `payonline.asp` endpoint

MITRE ATT&CK