CVE-2005-1361 Information

Feb 14, 2021 cve

Description

Multiple SQL injection vulnerabilities in MetaCart e-Shop 8.0 allow remote attackers to execute arbitrary SQL commands via the (1) intProdID parameter in product.asp or (2) strCatalog_NAME parameter to productsByCategory.asp.

Reference

http://marc.info/?l=bugtraq&m=111453994718211&w=2 http://www.securityfocus.com/bid/13376 http://www.securityfocus.com/bid/13377 https://exchange.xforce.ibmcloud.com/vulnerabilities/20283

Share on: