Back to search
CVE-2005-0907
Published: Mar 29, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple SQL injection vulnerabilities in Valdersoft Shopping Cart 3.0 allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to category.php, (2) the id parameter to item.php, (3) the lang parameter to index.php, (4) the searchQuery parameter to search_result.php, (5) or the searchTopCategoryID parameter to search_result.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20050327 Multiple sql injection, and xss vulnerabilities in Vladersoft Shopping Cart v.3.0
mailing-list
x_refsource_BUGTRAQ
1013565
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now