CVE-2021-46110 – Online Shopping Portal v3.1 contains time-based... (How to Fix)

Q: What is the severity of CVE-2021-46110?

CVE-2021-46110 has a CVSS score of 9.8 (CRITICAL). Online Shopping Portal v3.1 contains time-based SQL injection vulnerabilities in the email and contactno parameters, allowing attackers to execute arbitrary SQL commands and potentially access sensitive database information. This affects all deployments of version 3.1 of the software. Attackers can exploit these vulnerabilities without authentication.

📋 TL;DR

Online Shopping Portal v3.1 contains time-based SQL injection vulnerabilities in the email and contactno parameters, allowing attackers to execute arbitrary SQL commands and potentially access sensitive database information. This affects all deployments of version 3.1 of the software. Attackers can exploit these vulnerabilities without authentication.

💻 Affected Systems

Products:

Online Shopping Portal

Versions: Version 3.1

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: Affects all installations of version 3.1 regardless of configuration.

📦 What is this software?

Online Shopping Portal by Phpgurukul

View all CVEs affecting Online Shopping Portal →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, authentication bypass, remote code execution, and full system takeover.

🟠

Likely Case

Extraction of sensitive user data (passwords, personal information, payment details), database manipulation, and potential privilege escalation.

🟢

If Mitigated

Limited information disclosure if proper input validation and parameterized queries are implemented.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Time-based SQL injection is well-documented and automated tools exist for exploitation.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: Not available

Restart Required: No

Instructions:

No official patch available. Implement parameterized queries and input validation as workarounds.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement strict input validation for email and contactno parameters to reject malicious SQL characters.

Parameterized Queries

all

Replace dynamic SQL queries with parameterized/prepared statements to prevent SQL injection.

🧯 If You Can't Patch

Implement web application firewall (WAF) with SQL injection rules
Restrict database user permissions to minimum required

🔍 How to Verify

Check if Vulnerable:

Test email and contactno parameters with time-based SQL injection payloads (e.g., ' OR SLEEP(5)--).

Check Version:

Check application version in admin panel or configuration files.

Verify Fix Applied:

Retest with SQL injection payloads after implementing fixes; ensure no delayed responses occur.

📡 Detection & Monitoring

Log Indicators:

Unusual SQL error messages in logs
Multiple failed login attempts with SQL payloads
Long response times for specific parameters

Network Indicators:

HTTP requests containing SQL keywords (UNION, SELECT, SLEEP) in email/contactno parameters

SIEM Query:

source="web_logs" AND (email="*SLEEP*" OR contactno="*SLEEP*" OR email="*UNION*" OR contactno="*UNION*")

📊 Metadata

CVE ID: CVE-2021-46110

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-89

Published: February 18, 2022

Last Updated: November 21, 2024

🔗 References

https://giant-falcon-36d.notion.site/Online-Shopping-Portal-2924d0ad55e94c4cb2359b0d098c4db6 Exploit,Third Party Advisory
https://giant-falcon-36d.notion.site/Online-Shopping-Portal-2924d0ad55e94c4cb2359b0d098c4db6 Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-46110, you might also want to check these: