2 matches found
CVE-2009-0832
SQL injection vulnerability in items.php in the E-Cart module 1.3 for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the CA parameter...
CVE-2009-0832
CVE-2009-0832 describes a SQL injection in the E-Cart module 1.3 for PHP-Fusion. The vulnerability exists in items.php and allows remote attackers to inject arbitrary SQL via the CA parameter. Impact, as stated, is remote execution of SQL commands with partial confidentiality, integrity, and avai...