CVE-2010-4908

CVE-2010-4908

EPSS 1.3%

SQL injection vulnerability in detail.php in Virtue Shopping Mall allows remote attackers to execute arbitrary SQL commands via the prodid parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.org/0908-exploits/vsm-sql.txt http://secunia.com/advisories/35374 http://securityreason.com/securityalert/8443 https://exchange.xforce.ibmcloud.com/vulnerabilities/61875 http://www.securityfocus.com/bid/43274