RSS   Vulnerabilities for 'Productcart ecommerce'   RSS

2005-06-16
 
CVE-2005-1967

 

 
Multiple SQL injection vulnerabilities in ProductCart Ecommerce before 2.7 allow remote attackers to execute arbitrary SQL commands via the (1) idcategory parameter to viewPrd.asp, (2) lid parameter to editCategories.asp, (3) icd parameter to modCustomCardPaymentOpt.asp, or (4) idccr parameter to OptionFieldsEdit.asp.

 

 >>> Vendor: Early impact 3 Products
Productcart
Productcart ecommerce
Product cart


Copyright 2024, cxsecurity.com

 

Back to Top