VP-ASP Shopproductselect.ASP SQL Injection Vulnerability

VP-ASP Shopproductselect.ASP SQL Injection Vulnerability

It is confirmed that the VP-ASP Shopping Cart is prone to a remote SQL injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input before using it in an SQL query.

It is possible for an attacker to disclose the user password hashes, or other sensitive information contained within the database by exploiting this issue.There is also the possibility of exploiting latent vulnerabilities in the underlying database implementation.