Page 1 of 1

1.5.1.2 hacked

Posted: Sat Apr 28, 2012 5:54 am
by Marcopolo
Doresc o parere despre securitatea Open Cart 1.5.2.1(sau care este versiunea ceea mai securizata) am cautat pe google despre faptul cum sta cu securitatea.
Asta am gasit. Puteti sa-mi spuneti ce ar trebui sa fac?
Sau sa aleg o versiune mai buna?
Ori ce sa folosesc pt o mai buna securizare (SSL - htaccess )

Va multumesc frumos
Cu respect
Marco
====================================================
OpenCart v1.5.1.2 <= Blind SQL Vulnerability
====================================================


# Exploit Title: OpenCart v1.5.1.2 / Blind SQL Vulnerability
# Date: 08 - 09 - 2011
# Author: Rires Walid
# Software Link: http://www.opencart.com
# Contact : http://dz4web.info
# Version: v1.5.1.2
# Google dork: Powered By OpenCart Your Store © 2011
# Tested on: Xp Sp2(fr)

[*] ## ExPLo!T:



http://localhost/index.php?route=produc ... ct_id=[SQL]





=================================**Algerians Hackers**====================================|
# Greets To : |
**All Algerians Hackers** , Lagripe-Dz , HACKeR Dz , Sec4ever ,MMA_LORD_735,Jago_dz |
i-hmx , 3H34N , (1337day.com) , FoX HaCkEr , Serir W4Lid , Dz4Web.info |
==========================================================================================|

Re: 1.5.1.2 hacked

Posted: Sat Apr 28, 2012 9:19 pm
by Nija
Qphoria wrote:This is not an issue. As Xsecrets said, the (int) on the server side sanitizes it and always has. This is a BS hack and has already been disproven a number of times. There is no actual threat

Re: 1.5.1.2 hacked

Posted: Sun Apr 29, 2012 10:43 pm
by Marcopolo
thank you for your fast answer
best wishes

Marco