CVE-2006-2474

2006-05-19T17:02:00
ID CVE-2006-2474
Type cve
Reporter cve@mitre.org
Modified 2018-10-18T16:40:00

Description

SQL injection vulnerability in lshop.cgi in Cosmoshop 8.11.106 and earlier allows remote attackers to execute arbitrary SQL commands via the artnum parameter.