10 lines
No EOL
645 B
Text
10 lines
No EOL
645 B
Text
source: https://www.securityfocus.com/bid/21093/info
|
|
|
|
High Performance Computers Solutions Shopping Cart is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.
|
|
|
|
Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database implementation.
|
|
|
|
http://example.com/search_list.asp?Hpecs_Find=maingroup&searchstring='[sql]
|
|
http://example.com/search.asp?search='[sql]
|
|
http://example.com/category.asp?catcode='[sql]
|
|
http://example.com/product.asp?productid='[sql] |