Required CVE Record Information
Description
Multiple SQL injection vulnerabilities in SitesOutlet E-commerce Kit-1 PayPal Edition allow remote attackers to execute arbitrary SQL commands via the (1) keyword or (2) cid parameter in (a) catalogue.asp, or the (3) pid parameter in (b) viewDetail.asp.
References 5 Total
- securityfocus.com: 21056 vdb-entry
- securityreason.com: 1900 third-party-advisory
- secunia.com: 22975 third-party-advisory
- vupen.com: ADV-2006-4571 vdb-entry
- securityfocus.com: 20061114 E-commerce Kit 1 PayPal Edition [ injection sql ] mailing-list
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- securityfocus.com: 21056 vdb-entryx_transferred
- securityreason.com: 1900 third-party-advisoryx_transferred
- secunia.com: 22975 third-party-advisoryx_transferred
- vupen.com: ADV-2006-4571 vdb-entryx_transferred
- securityfocus.com: 20061114 E-commerce Kit 1 PayPal Edition [ injection sql ] mailing-listx_transferred