2 matches found
CVE-2005-3914
Multiple SQL injection vulnerabilities in AFFcommerce 1.1.4 allow remote attackers to execute arbitrary SQL commands via 1 the cl parameter to SubCategory.php and the itemid parameter in 2 ItemInfo.php and 3 ItemReview.php...
CVE-2005-3914
AFFcommerce 1.1.4 is affected by multiple SQL injection vulnerabilities (CVE-2005-3914). The flaws allow remote attackers to inject arbitrary SQL via (1) cl parameter to SubCategory.php and (2) item_id parameter in ItemInfo.php and (3) ItemReview.php. The connected documents confirm the affected ...