Description
Multiple SQL injection vulnerabilities in class.ajax.php in Turnkey Web Tools SunShop Shopping Cart before 4.1.5 allow remote attackers to execute arbitrary SQL commands via (1) the id parameter in an edit_registry action to index.php, (2) a vector involving the check_email function, and other vectors.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by GulfTech Security · textwebappsphp
https://www.exploit-db.com/exploits/6273
References (8)
Core 8
Core References
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/4180
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/495578/100/0/threaded
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/31539
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/6273
Exploit x_refsource_misc
http://www.gulftech.org/?node=research&article_id=00125-08182008
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/44553
Various Sources x_refsource_confirm
http://demos.turnkeywebtools.com/ss4/docs/change_log.txt
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/30751
Scores
EPSS
0.0141
EPSS Percentile
80.6%
Details
CWE
CWE-89
Status
published
Products (15)
turnkeywebtools/sunshop_shopping_cart
4.0.0
turnkeywebtools/sunshop_shopping_cart
4.0.1
turnkeywebtools/sunshop_shopping_cart
4.0.2
turnkeywebtools/sunshop_shopping_cart
4.0.3
turnkeywebtools/sunshop_shopping_cart
4.0.4
turnkeywebtools/sunshop_shopping_cart
4.0.5
turnkeywebtools/sunshop_shopping_cart
4.0.6
turnkeywebtools/sunshop_shopping_cart
4.0.7
turnkeywebtools/sunshop_shopping_cart
4.0.8
turnkeywebtools/sunshop_shopping_cart
4.0.9
... and 5 more
Published
Aug 22, 2008
Tracked Since
Feb 18, 2026