BugTraq
Back to list
|
Post reply
Re: Full path disclosure and sql injection on CubeCart 2.0.1
Oct 21 2004 10:59PM
sculptex sculptex co uk
In-Reply-To: <20041006144016.28823.qmail (at) www.securityfocus (dot) com [email concealed]>
Solution
INSERT
if (!is_numeric($cat_id))
unset($cat_id);
BEFORE
include("header.inc.php");
IN
index.php
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
Solution
INSERT
if (!is_numeric($cat_id))
unset($cat_id);
BEFORE
include("header.inc.php");
IN
index.php
[ reply ]