CVE-2005-2623 Information

Description

ECW-Shop 6.0.2 allows remote attackers to reduce the total cost of their shopping cart by specifying a negative quantity for an item which causes the price of the item to be subtracted from the total cost.

Reference

http://marc.info/?l=bugtraq&m=112421209919985&w=2 http://secunia.com/advisories/16459 http://securitytracker.com/id?1014734