5 matches found
EUVD-2006-6017
Malware in sbrugna...
CVE-2006-6034
Multiple SQL injection vulnerabilities in SitesOutlet E-commerce Kit-1 PayPal Edition allow remote attackers to execute arbitrary SQL commands via the 1 keyword or 2 cid parameter in a catalogue.asp, or the 3 pid parameter in b viewDetail.asp...
CVE-2006-6034
CVE-2006-6034 involves multiple SQL injection vulnerabilities in SitesOutlet E-commerce Kit-1 PayPal Edition. The affected functionality allows remote attackers to inject SQL via parameters in catalogue.asp (keyword, cid) and in viewDetail.asp (pid). The provided sources describe arbitrary SQL ex...
CVE-2006-6034
Multiple SQL injection vulnerabilities in SitesOutlet E-commerce Kit-1 PayPal Edition allow remote attackers to execute arbitrary SQL commands via the 1 keyword or 2 cid parameter in a catalogue.asp, or the 3 pid parameter in b viewDetail.asp...
SitesOutlet eCommerce Kit - Multiple SQL Injections
source: https://www.securityfocus.com/bid/21056/info SitesOutlet Ecommerce Kit is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the...