3 matches found
CVE-2008-1341
SQL injection vulnerability in SearchResults.aspx in LaGarde StoreFront 6 before SP8 allows remote attackers to execute arbitrary SQL commands via the CategoryId parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2008-1341
SQL injection vulnerability in SearchResults.aspx in LaGarde StoreFront 6 before SP8 allows remote attackers to execute arbitrary SQL commands via the CategoryId parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2008-1341
CVE-2008-1341 describes a SQL injection in the LaGarde StoreFront 6 product prior to SP8, exploitable via the CategoryId parameter in SearchResults.aspx. The vulnerability allows remote attackers to execute arbitrary SQL commands, with the impact described as partial confidentiality/integrity/ava...