Sql injection

2008-02-0120:00:00

PRIOn knowledge base

www.prio-n.com

9.3 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.4%

JSON

Multiple SQL injection vulnerabilities in CandyPress (CP) 4.1.1.26, and earlier 4.1.x versions, allow remote attackers to execute arbitrary SQL commands via the (1) idProduct and (2) options parameters to (a) ajax/ajax_optInventory.asp, or the (2) recid parameter to (b) ajax/ajax_getBrands.asp.

CPENameOperatorVersion
candypress_storeeq4.1.1.26
candypress_storeeq4.1

CPE	Name	Operator	Version
	candypress_store	eq	4.1.1.26
	candypress_store	eq	4.1

References

secunia.com/advisories/28662

securityreason.com/securityalert/3600

www.candypress.com/CPforum/forum_posts.asp?TID=10630&PN=1

www.securityfocus.com/archive/1/487058/100/0/threaded

www.securityfocus.com/bid/27454

www.vupen.com/english/advisories/2008/0314

exchange.xforce.ibmcloud.com/vulnerabilities/39939

www.exploit-db.com/exploits/4988