Multiple SQL injection vulnerabilities in WmsCms 2.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) search, (2) sbr, (3) pid, (4) sbl, and (5) FilePath parameters to default.asp; and the (6) sbr, (7) pr, and (8) psPrice parameters to printpage.asp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wmsdesign wmscms |