CVE-2006-5962
CVE-2006-5962 : Multiple SQL injection vulnerabilities in the Hpecs Shopping Cart allow remote attackers to execute arbitrary SQL via the username/password fields on the login screen and the searchstring parameter in insearch_list.asp. The root cause is improper handling of user input in these fi...