2 matches found
CVE-2006-5953
The CVE-2006-5953 issue is an SQL injection in Evolve shopping cart's viewcart.asp, exploitable through the zoneid parameter to execute arbitrary SQL commands. Documented in multiple sources (NVD, CVE lists, PT-2006-6618) confirms the vulnerability and its remote nature but provides no concrete d...
CVE-2006-6207
The CVE-2006-6207 issue affects the Evolve shopping cart (aka Evolve Merchant) where the products.asp page processes the partno parameter. The root cause is a SQL injection vulnerability that allows remote attackers to execute arbitrary SQL commands on the backend database. Reported impact is cap...