LiteCommerce Multiple SQL Injection Vulnerabilities

LiteCommerce Multiple SQL Injection Vulnerabilities

An exploit is not required.

The following proof of concept examples are available:

http://www.example.com/test/cart.php?target='PHP_SCRIPT_EXPOSUREPHP_SCRIPT_EXPOSURE

http://www.example.com/test/cart.php?target=category&category_id='SQL_INJECTION

http://www.example.com/test/cart.php?target=product&product_id='SQL_INJECTION&category_id=246