N/A

Multiple SQL injection vulnerabilities in WebAsyst Shop-Script FREE allow attackers to execute arbitrary SQL commands via the (1) add2cart, (2) c_id, (3) categoryID, (4) list_price, (5) name, (6) new_offer, (7) price, (8) product_code, (9) productID, (10) rating, and (11) save_product parameters.

N/A

N/A

WebAsyst Shop-Script FREE多个SQL注入漏洞

WebAsyst Shop-Script FREE是一款PHP的购物车软件。 WebAsyst Shop-Script FREE存在多个SQL注入漏洞。远程攻击者可以借助多个参数执行任意的SQL指令。这些参数包含：(1) add2cart、 (2) c_id、(3) categoryID、 (4) list_price、(5) name、 (6) new_offer、(7) price、 (8) product_code、 (9) productID、 (10) rating和(11) save_prod

N/A

N/A