|
|
CVE Reference: CVE-2005-1487 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-1487 |
|
|
Description: ** DISPUTED ** Multiple SQL injection vulnerabilities in FishCart 3.1 allow remote attackers to execute arbitrary SQL commands via the (1) cartid parameter to upstnt.php or (2) psku parameter to display.php. NOTE: the vendor disputes this report, saying that they are forced SQL errors. The original researcher is known to be unreliable. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/20386 SAID Secunia Advisory: SA15232 OSVDB 16282 16283 MISC http://www.digitalparadox.org/advisories/fishc.txt BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/457754/100/200/threaded http://marc.theaimsgroup.com/?l=bugtraq&m=111530799109755&w=2 BID 13499 |
|
| Return to the previous page. |
