CVE-2008-0281 Information

Description

SQL injection vulnerability in liste.php in ID-Commerce 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the idFamille parameter.

Reference

http://lists.grok.org.uk/pipermail/full-disclosure/2008-January/059533.html http://lists.grok.org.uk/pipermail/full-disclosure/2008-January/059537.html http://lists.grok.org.uk/pipermail/full-disclosure/2008-January/059538.html http://www.securityfocus.com/bid/27220 https://exchange.xforce.ibmcloud.com/vulnerabilities/39594