CVE-2005-0935

EPSS 1.3%

Multiple SQL injection vulnerabilities in ESMI PayPal Storefront allow remote attackers to execute arbitrary SQL commands via the (1) idpages parameter to pages.php or the (2) id2 parameter to products1.php.

Affected products

n/a · n/a

public PoCs found — 2

exploitdbwww.exploit-db.com/exploits/25278unverified exploitdbwww.exploit-db.com/exploits/25279unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://marc.info/?l=bugtraq&m=111221890614271&w=2 http://secunia.com/advisories/14711 http://securitytracker.com/id?1013563 http://www.hackerscenter.com/Archive/view.asp?id=1774 http://www.osvdb.org/15057 http://www.osvdb.org/15058 http://www.securityfocus.com/bid/12903