Post by nalom » Thu May 26, 2022 1:00 am

go to: http://52.221.237.159/

Warning: fread(): Length parameter must be greater than 0 in /opt/lampp/htdocs/opencart/system/library/cache/file.php on line 32
Fatal error: Uncaught Exception: Error: Can't create/write to file '/tmp/#sql_1a8b_0.MAI' (Errcode: 28 "No space left on device")<br />Error No: 1<br />SELECT * FROM oc_category c LEFT JOIN oc_category_description cd ON (c.category_id = cd.category_id) LEFT JOIN oc_category_to_store c2s ON (c.category_id = c2s.category_id) WHERE c.parent_id = '0' AND cd.language_id = '1' AND c2s.store_id = '0' AND c.status = '1' ORDER BY c.sort_order, LCASE(cd.name) in /opt/lampp/htdocs/opencart/system/library/db/mysqli.php:40 Stack trace: #0 /opt/lampp/htdocs/opencart/system/library/db.php(45): DB\MySQLi->query('SELECT * FROM o...') #1 /opt/lampp/htdocs/opencart/catalog/model/catalog/category.php(10): DB->query('SELECT * FROM o...') #2 /opt/lampp/htdocs/opencart/storage/modification/system/engine/loader.php(248): ModelCatalogCategory->getCategories(0) #3 /opt/lampp/htdocs/opencart/system/engine/proxy.php(47): Loader->{closure}(Array, Array) #4 /opt/lampp/htdocs/opencart/catalog/controller/extension/module/zemez_megamenu.php(18): Proxy-> in /opt/lampp/htdocs/opencart/system/library/db/mysqli.php on line 40

Fatal error: Uncaught Exception: Error: The table 'oc_session' is full<br />Error No: 1114<br />REPLACE INTO `oc_session` SET session_id = '700c653c4ab7eeaf70c92c21e7', `data` = '{\"language\":\"en-gb\",\"currency\":\"SGD\"}', expire = '2022-05-25 17:15:48' in /opt/lampp/htdocs/opencart/system/library/db/mysqli.php:40 Stack trace: #0 /opt/lampp/htdocs/opencart/system/library/db.php(45): DB\MySQLi->query('REPLACE INTO `o...') #1 /opt/lampp/htdocs/opencart/system/library/session/db.php(32): DB->query('REPLACE INTO `o...') #2 /opt/lampp/htdocs/opencart/system/library/session.php(81): Session\DB->write('700c653c4ab7eea...', Array) #3 [internal function]: Session->close() #4 {main} thrown in /opt/lampp/htdocs/opencart/system/library/db/mysqli.php on line 40


Impact and Risk
With no mitigating controls, SQL injection can leave the application at a high-risk of compromise resulting in an impact to the confidentiality, and integrity of data as well as authentication and authorization aspects of the application. An adversary can steal sensitive information stored in databases used by vulnerable programs or applications such as user credentials, trade secrets, or transaction records. SQL injection vulnerabilities should never be left open; they must be fixed in all circumstances. If the authentication or authorization aspects of an application is affected an attacker may be able login as any other user, such as an administrator which elevates their privileges.



Communication : hackerone.naplon@gmail.com

Newbie

Posts

Joined
Thu May 26, 2022 12:54 am

Post by ADD Creative » Thu May 26, 2022 9:56 pm

What version of OpenCart and PHP are you using? The error message looks to relate to your database running out of storage space not a SQL injection.

www.add-creative.co.uk


Expert Member

Posts

Joined
Sat Jan 14, 2012 1:02 am
Location - United Kingdom
Who is online

Users browsing this forum: No registered users and 31 guests