Описание
SQL injection vulnerability in track.php in PHPStore Wholesales (aka Wholesale) allows remote attackers to execute arbitrary SQL commands via the id parameter.
SQL injection vulnerability in track.php in PHPStore Wholesales (aka Wholesale) allows remote attackers to execute arbitrary SQL commands via the id parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-5493
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46626
- https://www.exploit-db.com/exploits/7134
- http://packetstorm.linuxsecurity.com/0811-exploits/wholesale-sql.txt
- http://secunia.com/advisories/32741
- http://securityreason.com/securityalert/4720
- http://www.securityfocus.com/bid/32314
- http://www.vupen.com/english/advisories/2008/3167
Связанные уязвимости
nvd
около 17 лет назад
SQL injection vulnerability in track.php in PHPStore Wholesales (aka Wholesale) allows remote attackers to execute arbitrary SQL commands via the id parameter.