Summary
The remote host is running the CodeThat.com ShoppingCart, a shopping cart program written in PHP.
The remote version of this software contains an input validation flaw leading to a SQL injection vulnerability. An attacker may exploit this flaw to execute arbitrary commands against the remote database.
Solution
Unknown at this time
Severity
Classification
-
CVE CVE-2005-1593, CVE-2005-1594, CVE-2005-1595 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- ApPHP MicroBlog Remote Code Execution Vulnerability
- AstroSPACES profile.php SQL Injection Vulnerability
- AlienVault OSSIM Multiple Remote Code Execution Vulnerabilities
- ActivDesk Multiple Cross Site Scripting and SQL Injection Vulnerabilities
- ActualAnalyzer Lite 'ant' Cookie Parameter Remote Command Execution Vulnerability