RSS   Vulnerabilities for 'Multicart'   RSS

2008-02-22
 
CVE-2008-0911

CWE-89
 

 
SQL injection vulnerability in productdetails.php in iScripts MultiCart 2.0 allows remote authenticated users to execute arbitrary SQL commands via the productid parameter.

 
2007-10-06
 
CVE-2007-5261

 

 
Multiple SQL injection vulnerabilities in MultiCart 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) catid parameter to categorydetail.php and the (2) ddlCategory parameter to search.php.

 

 >>> Vendor: Iscripts 14 Products
Supportdesk
Sonicbb
Multicart
Socialware
Easyindex
Easysnaps
Visualcaster
Reservelogic
Cybermatch
Easybiller
Eswap
Autohoster
Easycreate
Uberforx


Copyright 2024, cxsecurity.com

 

Back to Top