CVE-2011-5198
CVE-2011-5198 is a confirmed SQL injection in the Neturf eCommerce Shopping Cart, targeting the search.php endpoint. The vulnerability allows remote attackers to append arbitrary SQL via the SearchFor parameter (no authentication required, network access). CVSS v2 metrics indicate a base score of...