2 matches found
CVE-2006-4871
SQL injection vulnerability in searchrun.asp in Keyvan1 aka Keyvan Janghorbani EShoppingPro 1.0 allows remote attackers to execute arbitrary SQL commands via the order parameter...
CVE-2006-4871
CVE-2006-4871 is a SQL injection vulnerability in the Keyvan1 EShoppingPro 1.0 product, specifically in search_run.asp. The issue allows remote attackers to modify the underlying SQL logic via the order parameter, potentially enabling arbitrary SQL execution. The available documents identify the ...