Prestashop Cartium 1.3.3 - 0.246s SQL Injection

2011-02-25T00:00:00
ID PACKETSTORM:98732
Type packetstorm
Reporter Antonio San Martino
Modified 2011-02-25T00:00:00

Description

                                        
                                            ` Vulnerable software and vendor: Prestashop, verion: 1.3.3 - 0.246s   
  
  
Sql Injection Vulnerabilities  
  
Vulnerable File Vulnerable Field   
category.php id_category  
cart.php id_product  
product.php id_product  
  
  
  
Vulnerability details: just inject ' and you get sql eror   
  
`