CVE-2007-0112

SQL injection vulnerability in cats.asp in createauction allows remote attackers to execute arbitrary SQL commands via the catid parameter.

Date published : 2007-01-08

http://www.securityfocus.com/bid/21929

http://www.securityfocus.com/archive/1/456272/100/0/threaded