SQL injection vulnerability in Online Store Kit 3.0 allows remote attackers to inject arbitrary SQL and gain unauthorized access via (1) the cat parameter in shop.php, (2) the id parameter in more.php, (3) the cat_manufacturer parameter in shop_by_brand.php, or (4) the id parameter in listing.php.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2004-03-18T05:00:00
Updated: 2017-07-10T14:57:01
Reserved: 2004-03-17T00:00:00
Link: CVE-2004-0300
JSON object: View
NVD Information
Status : Modified
Published: 2004-11-23T05:00:00.000
Modified: 2017-07-11T01:30:03.103
Link: CVE-2004-0300
JSON object: View
Redhat Information
No data.
CWE