VP-ASP 'paypalresult.asp' SQL Injection Vulnerability

VP-ASP Shopping Cart is prone to a remote SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query.

A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

VP-ASP 6.50 and prior versions are affected.


 

Privacy Statement
Copyright 2010, SecurityFocus