2 matches found
Fixed: LiveCart SQL injection vulnerability fixed since version 1.1.2
LiveCart 'id' parameter SQL injection vulnerability has been fixed in the recent LiveCart 1.1.2 release. Original vulnerability reference: https://vulners.com/cve/CVE-2008-1750 LiveCart 1.1.2 release announcement: http://livecart.com/news/LiveCart-1-1-2-released.12 -- Best regards, Rinalds Uzkaln...
CVE-2008-1750
LiveCart 1.1.1 and earlier contains a SQL injection in the directory script: the id parameter used in /category is not properly validated, enabling remote SQL injection. The vulnerability severity is supported by CVE-2008-1750 references and related disclosures. A fix was released in LiveCart 1.1...