SQL injection vulnerability in infopage.asp in Mall23 eCommerce allows remote malicious users to execute arbitrary SQL commands via the idPage parameter.
mall23 mall23