|
|
|
|
| |
| QuikStore is an easy to use, turnkey solution for a web Shopping Cart. A vulnerability in the product allows remote attackers to read locally available files. |
| |
Credit:
The information has been provided by admin at cgisecurity.com.
|
| |
Vulnerable systems:
QuikStore version 2.00
QuikStore version 2.09.05
QuikStore version 2.09.10
In a few versions of QuikStore's Shopping Cart it is possible to read any world readable file on the server. One such example is that someone could easily get your password file if it is unshadowed. In addition, it's possible, after the passwords have been cracked, to steal client personal information, or credit card information (Although it does use PGP to protect its records, some administrators may keep the key on the same system).
The problem lies in QuikStore.cgi itself. The following example grabs the CGI program's actual source code. You can imagine other ways to exploit this. Another potential problem is that it is possible to read configuration files, and potentially expose paths to sensitive files, or information that you probably do not want people to know about.
Example:
http://www.example.com/cgi-bin/quikstore.cgi?page=../quikstore.cgi%00html&cart_id=
Patch:
As of 12/10/00, a patch has been created to correct the above vulnerability in the older versions of the Quikstore.cgi program.
This patch is available to any registered user by simply emailing quikstore at: support@quikstore.com
|
|
|
|
|
|
|
|
|
|
