Midicart Software - Midicart Asp Plus Shopping Cart CVE

Filtered by vendor Midicart Software Subscribe

Filtered by product Midicart Asp Plus Shopping Cart

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2006-6209	1 Midicart Software	2 Midicart Asp Plus Shopping Cart, Midicart Asp Shopping Cart	2024-02-04	7.5 HIGH	N/A
Multiple SQL injection vulnerabilities in MidiCart ASP Shopping Cart and ASP Plus Shopping Cart allow remote attackers to execute arbitrary SQL commands via the (1) id2006quant parameter to (a) item_show.asp, or the (2) maingroup or (3) secondgroup parameter to (b) item_list.asp. NOTE: the code_no parameter to Item_Show.asp is covered by CVE-2005-2601.

Vulnerabilities (CVE)