5 matches found
EUVD-2006-6017
Malware in sbrugna...
CVE-2006-6034
Multiple SQL injection vulnerabilities in SitesOutlet E-commerce Kit-1 PayPal Edition allow remote attackers to execute arbitrary SQL commands via the 1 keyword or 2 cid parameter in a catalogue.asp, or the 3 pid parameter in b viewDetail.asp...
CVE-2006-6034
Multiple SQL injection vulnerabilities in SitesOutlet E-commerce Kit-1 PayPal Edition allow remote attackers to execute arbitrary SQL commands via the 1 keyword or 2 cid parameter in a catalogue.asp, or the 3 pid parameter in b viewDetail.asp...
CVE-2006-6034
CVE-2006-6034 involves multiple SQL injection vulnerabilities in SitesOutlet E-commerce Kit-1 PayPal Edition. The affected functionality allows remote attackers to inject SQL via parameters in catalogue.asp (keyword, cid) and in viewDetail.asp (pid). The provided sources describe arbitrary SQL ex...
SitesOutlet eCommerce Kit - Multiple SQL Injections
source: https://www.securityfocus.com/bid/21056/info SitesOutlet Ecommerce Kit is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the...