7 matches found
EUVD-2005-2446
Malware in sbrugna...
Business Logic Errors in microweber/microweber
Description A fixed price coupon can be applied to get negative price for a product Proof of Concept 1: Create a fixed coupon Example: $200 coupon, $300 minimum 2: Add two products into the cart Example $50 + $300 3: Apply the fixed coupon. 4: Remove the $300 product. Observe that the price is no...
CVE-2005-2445
SQL injection vulnerability in viewPrd.asp in Product Cart 2.6 allows remote attackers to execute arbitrary SQL commands via the idcategory parameter...
CVE-2005-2445
SQL injection vulnerability in viewPrd.asp in Product Cart 2.6 allows remote attackers to execute arbitrary SQL commands via the idcategory parameter...
CVE-2005-2445
CVE-2005-2445 = SQL injection in Product Cart 2.6. The vulnerability is in viewPrd.asp and allows remote attackers to execute arbitrary SQL commands via the idcategory parameter. Documents indicate a remote attacker could alter queries; no exploit details are provided in the sources. No remediati...
[HSC Security Group] SQL Injection in Product Cart 2.6
Hackers Center Security Group http://www.hackerscenter.com/ Zinho's Security Advisory Desc: SQL Injection in Product Cart 2.6 Risk: Medium to High An SQL injection affects Product Cart 2.6. Database Manipulation is possible. viewPrd.asp?idcategory=' Vendor: http://www.earlyimpact.com/ "Our...
pc26sql.txt
--Alt-Boundary-21084.11145145 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Hackers Center Security Group http://www.hackerscenter.com/ Zinho's Security Advisory Desc: SQL Injection in Product Cart 2.6 Risk: Medium to High An SQL...