CVE-2005-0935 Information

Description

Multiple SQL injection vulnerabilities in ESMI PayPal Storefront allow remote attackers to execute arbitrary SQL commands via the (1) idpages parameter to pages.php or the (2) id2 parameter to products1.php.

Reference

http://marc.info/?l=bugtraq&m=111221890614271&w=2 http://secunia.com/advisories/14711 http://securitytracker.com/id?1013563 http://www.hackerscenter.com/Archive/view.asp?id=1774 http://www.osvdb.org/15057 http://www.osvdb.org/15058 http://www.securityfocus.com/bid/12903