CVE-2008-0738 Information

Description

Multiple SQL injection vulnerabilities in CandyPress (CP) 4.1.1.26 and earlier 4.1.x versions allow remote attackers to execute arbitrary SQL commands via the (1) idcust parameter to (a) ajax_getTiers.asp and (b) ajax_getCust.asp in ajax/ and the (2) tableName parameter to (c) ajax/ajax_tableFields.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Reference

http://secunia.com/advisories/28662 http://www.candypress.com/CPforum/forum_posts.asp?TID=10630&PN=1 http://www.vupen.com/english/advisories/2008/0314