ProductCart modCustomCardPaymentOpt.asp idc Variable SQL Injection

2005-06-15T22:03:29
ID OSVDB:17331
Type osvdb
Reporter OSVDB
Modified 2005-06-15T22:03:29

Description

Manual Testing Notes

http://[target]/pc/pcadmin/modCustomCardPaymentOpt.asp ?mode=Edit&idc=[page][sqlinjection]&id=[id]&gwCode=[code]

References:

Vendor URL: http://www.earlyimpact.com/ Security Tracker: 1014129 Related OSVDB ID: 17329 Related OSVDB ID: 17332 Related OSVDB ID: 17330 Related OSVDB ID: 17333 Other Advisory URL: http://echo.or.id/adv/adv16-theday-2005.txt CVE-2005-1967 Bugtraq ID: 13881