SecuritySpace - CVE-2005-0994

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2005-0994

Description: Multiple SQL injection vulnerabilities in ProductCart 2.7 allow remote attackers to execute arbitrary SQL commands via (1) the Category or resultCnt parameters to advSearch_h.asp, and possibly (2) the offset parameter to tarinasworld_butterflyjournal.asp. NOTE: it is possible that item (2) is the result of a typo or editing error from the original research report.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2005-0994
BugTraq ID: 12990
http://www.securityfocus.com/bid/12990
http://digitalparadox.org/advisories/prodcart.txt
http://digitalparadox.org/advisories/prodcart.txt
http://www.osvdb.org/15263
http://www.osvdb.org/15265
http://secunia.com/advisories/14833

CVE ID:	CVE-2005-0994
Description:	Multiple SQL injection vulnerabilities in ProductCart 2.7 allow remote attackers to execute arbitrary SQL commands via (1) the Category or resultCnt parameters to advSearch_h.asp, and possibly (2) the offset parameter to tarinasworld_butterflyjournal.asp. NOTE: it is possible that item (2) is the result of a typo or editing error from the original research report.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2005-0994 BugTraq ID: 12990 http://www.securityfocus.com/bid/12990 http://digitalparadox.org/advisories/prodcart.txt http://digitalparadox.org/advisories/prodcart.txt http://www.osvdb.org/15263 http://www.osvdb.org/15265 http://secunia.com/advisories/14833