5 matches found
EUVD-2006-6017
Malware in sbrugna...
CVE-2006-6034
Multiple SQL injection vulnerabilities in SitesOutlet E-commerce Kit-1 PayPal Edition allow remote attackers to execute arbitrary SQL commands via the 1 keyword or 2 cid parameter in a catalogue.asp, or the 3 pid parameter in b viewDetail.asp...
CVE-2006-6034
CVE-2006-6034 involves multiple SQL injection vulnerabilities in SitesOutlet E-commerce Kit-1 PayPal Edition. The affected functionality allows remote attackers to inject SQL via parameters in catalogue.asp (keyword, cid) and in viewDetail.asp (pid). The provided sources describe arbitrary SQL ex...
CVE-2006-6034
Multiple SQL injection vulnerabilities in SitesOutlet E-commerce Kit-1 PayPal Edition allow remote attackers to execute arbitrary SQL commands via the 1 keyword or 2 cid parameter in a catalogue.asp, or the 3 pid parameter in b viewDetail.asp...
ecomkit1.txt
vendor site:http://www.sitesoutlet.com/ product:E-commerce Kit 1 PayPal Edition bug:injection sql risk:medium injection sql : http://site.com/PATH/catalogue.asp?keyword='sql http://site.com/PATH/catalogue.asp?cid='sql http://site.com/PATH//viewDetail.asp?pid='sql laurent gaffié & benjamin mossé...