CVE-2005-1362

by Fred · 28/04/2005

Multiple SQL injection vulnerabilities in MetaCart 2.0 for Paypal allow remote attackers to execute arbitrary SQL commands via the (1) intProdID parameter to product.asp, (2) intCatalogID or (3) strSubCatalogID parameters to productsByCategory.asp, (4) chkText, (5) strText, (6) chkPrice, (7) intPrice, (8) chkCat, or (9) strCat parameters to searchAction.asp.

Date published : 2005-04-28

http://marc.info/?l=bugtraq&m=111454090503662&w=2

CVE-2005-1362

Related

Recent Posts

Categories

Latest CWE

CVE-2005-1362

Share this:

Related

Recent Posts

Categories

Tags

Latest CWE