CVE-2007-0142

2007-01-09T18:28:00
ID CVE-2007-0142
Type cve
Reporter cve@mitre.org
Modified 2018-10-16T16:31:00

Description

SQL injection vulnerability in orange.asp in ShopStoreNow E-commerce Shopping Cart allows remote attackers to execute arbitrary SQL commands via the CatID parameter.