← voltar
CVE-2010-4147

CVE-2010-4147

EPSS 1.3%
Multiple SQL injection vulnerabilities in Pentasoft Avactis Shopping Cart 1.9.1 build 8356 free edition and earlier allow remote attackers to execute arbitrary SQL commands via the User-Agent header to (1) index.php and (2) product-list.php.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://holisticinfosec.org/content/view/159/45/http://secunia.com/advisories/41764https://exchange.xforce.ibmcloud.com/vulnerabilities/62559http://www.avactis.com/forums/index.php?showtopic=5317http://www.osvdb.org/68646http://www.osvdb.org/68647http://www.securityfocus.com/bid/44104