← back
CVE-2004-2108

CVE-2004-2108

EPSS 3.2%
Multiple SQL injection vulnerabilities in QuadComm Q-Shop allow remote attackers to execute arbitrary SQL commands via certain parameters to (1) search.asp, (2) browse.asp, (3) details.asp, (4) showcat.asp, (5) users.asp, (6) addtomylist.asp, (7) modline.asp, (8) cart.asp, or (9) newuser.asp.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=107488132208229&w=2http://secunia.com/advisories/10704http://securitytracker.com/alerts/2004/Jan/1008837.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/14922http://www.osvdb.org/3698http://www.osvdb.org/3699http://www.osvdb.org/3700http://www.osvdb.org/3701http://www.osvdb.org/3702http://www.osvdb.org/3703http://www.osvdb.org/3704http://www.osvdb.org/3705