CVE-2006-4871

2006-09-19T21:07:00
ID CVE-2006-4871
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:40:00

Description

SQL injection vulnerability in search_run.asp in Keyvan1 (aka Keyvan Janghorbani) EShoppingPro 1.0 allows remote attackers to execute arbitrary SQL commands via the order parameter.