Multiple SQL injection vulnerabilities in MetaCart e-Shop 8.0 allow remote attackers to execute arbitrary SQL commands via the (1) intProdID parameter in product.asp or (2) strCatalog_NAME parameter to productsByCategory.asp.
References
Configurations
History
No history.
Information
Published : 2005-05-02 04:00
Updated : 2024-02-04 16:52
NVD link : CVE-2005-1361
Mitre link : CVE-2005-1361
CVE.ORG link : CVE-2005-1361
JSON object : View
Products Affected
metalinks
- metacart_e-shop
CWE