CVE-2006-7170 in Mega Mallinformation

Résumé

par MITRE

Multiple SQL injection vulnerabilities in Koan Software Mega Mall allow remote attackers to execute arbitrary SQL commands via the (1) t, (2) productId, (3) sk, (4) x, or (5) so parameter to (a) product_review.php; or the (6) orderNo parameter to (b) order-track.php.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Réserver

20/03/2007

Divulgation

20/03/2007

Modérer

accepté

Entrée

VDB-35676

CPE

prêt

EPSS

0.01280

KEV

non

Activités

très faible

Sources

Might our Artificial Intelligence support you?

Check our Alexa App!