NuytsTech Security

CVE-2006-3794

by ·

** DISPUTED **

SQL injection vulnerability in Amazing Flash AFCommerce Shopping Cart allows remote attackers to execute arbitrary SQL commands via the search field. NOTE: the vendor has disputed this issue, stating "if someone were to type in any sql injection code, that code would never be queried."

Date published : 2006-07-21

http://www.securityfocus.com/bid/19074

http://www.securityfocus.com/archive/1/440589/100/0/threaded

Tags: