RSS   Vulnerabilities for 'Evolve merchant'   RSS

2006-11-30
 
CVE-2006-6207

CWE-Other
 

 
** DISPUTED ** SQL injection vulnerability in products.asp in Evolve shopping cart (aka Evolve Merchant) allows remote attackers to execute arbitrary SQL commands via the partno parameter. NOTE: the vendor disputes this issue, stating that it is a forced SQL error.

 
2006-11-16
 
CVE-2006-5953

CWE-Other
 

 
SQL injection vulnerability in viewcart.asp in Evolve shopping cart (aka Evolve Merchant) allows remote attackers to execute arbitrary SQL commands via the zoneid parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top