CVE-2007-4076 Information

Description

Multiple SQL injection vulnerabilities in index.asp in Alisveris Sitesi Scripti allow remote attackers to execute arbitrary SQL commands via the (1) product_id or (2) cat_id parameter in a product mod action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Reference

http://osvdb.org/37136 http://www.securityfocus.com/bid/25005