2 matches found
Sql injection
SQL injection vulnerability in Integry Systems LiveCart 1.1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to the /category URI...
CVE-2008-1750
LiveCart 1.1.1 and earlier contains a SQL injection in the directory script: the id parameter used in /category is not properly validated, enabling remote SQL injection. The vulnerability severity is supported by CVE-2008-1750 references and related disclosures. A fix was released in LiveCart 1.1...