2 matches found
CVE-2010-4923
SQL injection vulnerability in book/detail.php in Virtue Netz Virtue Book Store allows remote attackers to execute arbitrary SQL commands via the bid parameter...
CVE-2010-4923
CVE-2010-4923: SQL injection in Virtue Netz Virtue Book Store (book/detail.php) via the bid parameter. Root cause: unsafely constructed SQL using user input. Impact: allows remote command execution with partial impact on confidentiality, integrity, and availability per NVD CVSS 2.0 base metrics (...