CVE-2012-5317

2012-10-08T17:55:00
ID CVE-2012-5317
Type cve
Reporter cve@mitre.org
Modified 2012-10-24T04:00:00

Description

SQL injection vulnerability in main_bigware_43.php in Bigware Shop before 2.1.5 allows remote attackers to execute arbitrary SQL commands via the lastname parameter in a process action.