← back
CVE-2005-2047

CVE-2005-2047

EPSS 1.2%
Multiple SQL injection vulnerabilities in DUware DUpaypal Pro 3.0 allow remote attackers to execute arbitrary SQL commands via the (1) iCat parameter to cat.asp, (2) iPro parameter to detail.asp, (3) iSub parameter to sub.asp, (4) iCat parameter to catEdit.asp.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://echo.or.id/adv/adv19-theday-2005.txthttp://marc.info/?l=bugtraq&m=111945219205114&w=2