NZ Ecommerce Multiple Input Validation Vulnerabilities


These issues can be exploited through use of a web client.

The following proof of concept URI are available:


http://www.example.com/index.php?action=Information&informationID=[SQL]
http://www.example.com//index.php?action=DisplayOverviewproduct&ParentCategory=[SQL]


 

Privacy Statement
Copyright 2010, SecurityFocus