Injection: Joomla MarvikShop ShoppingCart 3.4 - Sql Injection¶
Identifier:
joomla_marvikshop_sqli
Scanner(s) Support¶
| GraphQL Scanner | REST Scanner | WebApp Scanner | ASM Scanner |
|---|---|---|---|
Description¶
Joomla MarvikShop ShoppingCart 3.4 plugin is vulnerable to SQL injection, allowing attackers to inject malicious SQL code through web page input and potentially access or destroy database contents.
How we test: We send specially crafted SQL injection payloads to vulnerable endpoints in the MarvikShop ShoppingCart plugin. We analyze responses to detect if SQL queries are executed, which would indicate a successful SQL injection vulnerability.
Reference:
- https://vulners.com/zdt/1337DAY-ID-38020
- https://cxsecurity.com/issue/WLB-2022100015
- https://extensions.joomla.org/
Configuration¶
Example¶
Example configuration:
Reference¶
skip¶
Type : boolean
Skip the test if true.