|
|
CVE Reference: CVE-2005-2046 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-2046 |
|
|
Description: Multiple SQL injection vulnerabilities in DUware DUamazon Pro 3.0 and 3.1 allow remote attackers to execute arbitrary SQL commands via the (1) iCat parameter to cat.asp, (2) iSub parameter to sub.asp, (3) iSub parameter to detail.asp, (4) iPro parameter to review.asp, iCat parameter to (5) catEdit.asp, (6) catDelete.asp, (7) productEdit.asp, or (8) productDelete.asp, or (9) iType parameter to type.asp. |
|
|
CVE Status: Candidate |
|
|
References: MISC http://echo.or.id/adv/adv19-theday-2005.txt BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=111945219205114&w=2 |
|
| Return to the previous page. |
