CVE-2005-4404
The CVE-2005-4404 entry describes an SQL injection vulnerability in default.asp for Media2 CMS Shop 18.x. The vulnerability is exploitable via the item parameter, allowing remote attackers to execute arbitrary SQL commands. The root cause described across sources is unsafe handling/concatenation ...