SQL injection vulnerability in products.asp in Evolve shopping cart (aka Evolve Merchant) allows remote malicious users to execute arbitrary SQL commands via the partno parameter. NOTE: the vendor disputes this issue, stating that it is a forced SQL error
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lynx internet solutions evolve merchant |