CVE-2005-0994
published 2005-05-02CVE-2005-0994: Multiple SQL injection vulnerabilities in ProductCart 2.7 allow remote attackers to execute arbitrary SQL commands via (1) the Category or resultCnt parameters…
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
3.89%
88.9th percentile
Multiple SQL injection vulnerabilities in ProductCart 2.7 allow remote attackers to execute arbitrary SQL commands via (1) the Category or resultCnt parameters to advSearch_h.asp, and possibly (2) the offset parameter to tarinasworld_butterflyjournal.asp. NOTE: it is possible that item (2) is the result of a typo or editing error from the original research report.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| early_impact | productcart | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
ProductCart 1.x/2.x - 'Custva.asp?redirectUrl' Cross-Site Scripting
exploitdb·2004-02-16
CVE-2005-0994 ProductCart 1.x/2.x - 'Custva.asp?redirectUrl' Cross-Site Scripting
ProductCart 1.x/2.x - 'Custva.asp?redirectUrl' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/9669/info
EarlyImpact ProductCart is reportedly prone to multiple vulnerabilities. The specific issues include SQL injection, cross-site scripting and cryptographic weaknesses. These issues could expose sensitive data such as user credentials and allow for execution of hostile script code and HTML. These issues could allow for full compromise of the software.
http://www.example.com/productcart/pc/Custva.asp?redirectUrl=">alert(document.cookie)<"
Exploit-DB
ProductCart 1.x/2.x - 'advSearch_h.asp' Multiple SQL Injections
exploitdb·2004-02-16
CVE-2005-0994 ProductCart 1.x/2.x - 'advSearch_h.asp' Multiple SQL Injections
ProductCart 1.x/2.x - 'advSearch_h.asp' Multiple SQL Injections
---
source: https://www.securityfocus.com/bid/9669/info
EarlyImpact ProductCart is reportedly prone to multiple vulnerabilities. The specific issues include SQL injection, cross-site scripting and cryptographic weaknesses. These issues could expose sensitive data such as user credentials and allow for execution of hostile script code and HTML. These issues could allow for full compromise of the software.
http://www.example.com/productcart/pc/advSearch_h.asp?idcategory=0&idSupplier=10&customfield=0&priceUntil=999;in--sert%20into%20admins%20(idadmin,%20adminpassword,%20adminlevel
+)%20s--elect%20lastName,%20password,%20name%20from%20customers%20where%20zip=987654;s--elect%20*%20from%20products%20where%201=1&Submit.y=13&price
No writeups or analysis indexed.
http://digitalparadox.org/advisories/prodcart.txthttp://secunia.com/advisories/14833http://www.osvdb.org/15263http://www.osvdb.org/15265http://www.securityfocus.com/bid/12990http://digitalparadox.org/advisories/prodcart.txthttp://secunia.com/advisories/14833http://www.osvdb.org/15263http://www.osvdb.org/15265http://www.securityfocus.com/bid/12990
2005-05-02
Published