CVE-2004-2413

2005-08-1804:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.002

Percentile

57.0%

JSON

SQL injection vulnerability in VP-ASP Shopping Cart 4.0 through 5.0 allows remote attackers to execute arbitrary SQL commands via the (1) Processed0 and (2) Processed1 parameters in a POST request to shopproductselect.asp.

References

archives.neohapsis.com/archives/fulldisclosure/2004-06/0363.html

www.securityfocus.com/bid/10536

exchange.xforce.ibmcloud.com/vulnerabilities/16400