Cartweaver 2.16.11 Results.cfm category Parameter SQL Injection

ID SSV:81444
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00


No description provided by source.


Cartweaver ColdFusion is prone to SQL-injection vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input before using it in SQL queries. 

Successful exploits could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.[SQL][SQL]