CVE-2007-1705
CVE-2007-1705 describes an SQL injection in default.asp of Active Trade 2, exploitable via the catid parameter. The vulnerability allows remote attackers to execute arbitrary SQL commands. Affected software and exact file: default.asp (Active Trade 2). Underlying cause stated: unsafely handling t...