SQL injection vulnerability in Softbiz B2B Trading Marketplace Script 1.1 and earler allows remote attackers to execute arbitrary SQL commands via the cid parameter in (1) selloffers.php, (2) buyoffers.php, (3) products.php, or (4) profiles.php.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-12-01T11:00:00
Updated: 2005-12-08T10:00:00
Reserved: 2005-12-01T00:00:00
Link: CVE-2005-3937
JSON object: View
NVD Information
Status : Analyzed
Published: 2005-12-01T06:03:00.000
Modified: 2009-10-09T04:33:16.670
Link: CVE-2005-3937
JSON object: View
Redhat Information
No data.
CWE