Vulnerabilities

CVE-2005-1161

by Fred · 18/04/2005

Multiple SQL injection vulnerabilities in OneWorldStore allow remote attackers to execute arbitrary SQL commands via the idProduct parameter to (1) owAddItem.asp or (2) owProductDetail.asp, (3) idCategory parameter to owListProduct.asp, or (4) bSpecials parameter to owListProduct.asp.

Date published : 2005-04-18

http://www.securityfocus.com/bid/13181

http://www.securityfocus.com/bid/13182

Similar

Tags: Cybersecurity Alert