← back
CVE-2003-1268

CVE-2003-1268

EPSS 1.7%
Multiple SQL injection vulnerabilities in (1) addcustomer.asp, (2) addprod.asp, and (3) process.asp in a.shopKart 2.0.3 allow remote attackers to execute arbitrary SQL and obtain sensitive information via the zip, state, country, phone, and fax parameters.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/7838http://www.centaura.com.ar/infosec/adv/ashopkart.txthttp://www.iss.net/security_center/static/11029.phphttp://www.osvdb.org/37036http://www.osvdb.org/37037http://www.osvdb.org/37038http://www.securityfocus.com/archive/1/305685http://www.securityfocus.com/bid/6558http://www.securitytracker.com/id?1005903