NuytsTech Security

CVE-2006-6034

by ·

Multiple SQL injection vulnerabilities in SitesOutlet E-commerce Kit-1 PayPal Edition allow remote attackers to execute arbitrary SQL commands via the (1) keyword or (2) cid parameter in (a) catalogue.asp, or the (3) pid parameter in (b) viewDetail.asp.

Date published : 2006-11-21

http://www.securityfocus.com/bid/21056

http://www.securityfocus.com/archive/1/451771/100/0/threaded

Tags: