CVE-2005-1361

2005-04-2804:00:00

mitre

www.cve.org

8.5 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

59.2%

JSON

Multiple SQL injection vulnerabilities in MetaCart e-Shop 8.0 allow remote attackers to execute arbitrary SQL commands via the (1) intProdID parameter in product.asp or (2) strCatalog_NAME parameter to productsByCategory.asp.

References

marc.info/?l=bugtraq&m=111453994718211&w=2

www.securityfocus.com/bid/13376

www.securityfocus.com/bid/13377

exchange.xforce.ibmcloud.com/vulnerabilities/20283