3 matches found
CVE-2006-3188
Multiple SQL injection vulnerabilities in Sharky e-shop 3.05 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 maingroup and 2 secondgroup parameters to a searchprodlist.asp, and the 3 maingroup parameter to b meny2.asp. NOTE: the provenance of this information is...
CVE-2006-3188
Multiple SQL injection vulnerabilities in Sharky e-shop 3.05 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 maingroup and 2 secondgroup parameters to a searchprodlist.asp, and the 3 maingroup parameter to b meny2.asp. NOTE: the provenance of this information is...
CVE-2006-3188
CVE-2006-3188 involves multiple SQL injection vulnerabilities in Sharky e-shop versions 3.05 and earlier. The flaws allow remote attackers to execute arbitrary SQL commands through user-supplied inputs in web parameters: (1) maingroup and (2) secondgroup to search_prod_list.asp, and (3) maingroup...