Cartwiz - Asp Cart CVE

Filtered by vendor Cartwiz Subscribe

Filtered by product Asp Cart

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2005-1291	1 Cartwiz	1 Asp Cart	2024-02-04	7.5 HIGH	N/A
Multiple SQL injection vulnerabilities in CartWIZ ASP Cart allow remote attackers to execute arbitrary SQL commands via the idProduct parameter to (1) addToCart.asp or (2) productDetails.asp, the (3) priceFrom, (4) idCategory, or (5) priceTo parameter to searchResults.asp, or (6) the idParentCategory parameter to productCatalogSubCats.asp.

Vulnerabilities (CVE)