SQL injection vulnerability in the Getwebsess function in shopsessionsubs.asp in Rocksalt International VP-ASP Shopping Cart 6.50 and previous versions allows remote malicious users to execute arbitrary SQL commands via the websess parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vpasp vp-asp shopping cart |
||
vpasp vp-asp shopping cart 6.00 |
||
vpasp vp-asp shopping cart 5.50 |