CVE-2008-5838 Information

Description

SQL injection vulnerability in search_results.php in E-Php Scripts E-Shop (aka E-Php Shopping Cart) Shopping Cart Script allows remote attackers to execute arbitrary SQL commands via the cid parameter.

Reference

http://secunia.com/advisories/31506 http://www.securityfocus.com/bid/30692 http://www.securityfocus.com/bid/31319 http://www.vupen.com/english/advisories/2008/2507 https://exchange.xforce.ibmcloud.com/vulnerabilities/44472 https://www.exploit-db.com/exploits/6398