Multiple SQL injection vulnerabilities in Hpecs Shopping Cart allow remote malicious users to execute arbitrary SQL commands via the (1) Username and (2) Password fields in the (a) login screen, and (3) searchstring parameter in (b) insearch_list.asp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hpecs shopping cart hpecs shopping cart |