CVE-2004-1580
CubeCart 2.0.1 is affected: index.php uses the cat_id parameter in SQL queries, enabling remote SQL injection to potentially modify or disclose data. Root cause: unsafely constructed SQL from user input in cat_id. Impact aligns with CVSS: HIGH (partial confidentiality, integrity, and availability...