CVE-2005-2046

Multiple SQL injection vulnerabilities in DUware DUamazon Pro 3.0 and 3.1 allow remote attackers to execute arbitrary SQL commands via the (1) iCat parameter to cat.asp, (2) iSub parameter to sub.asp, (3) iSub parameter to detail.asp, (4) iPro parameter to review.asp, iCat parameter to (5) catEdit.asp, (6) catDelete.asp, (7) productEdit.asp, or (8) productDelete.asp, or (9) iType parameter to type.asp.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:duware:duamazon_pro:3.0:*:*:*:*:*:*:*
cpe:2.3:a:duware:duamazon_pro:3.1:*:*:*:*:*:*:*

Information

Published : 2005-06-21 21:00

Updated : 2016-10-17 20:24


NVD link : CVE-2005-2046

Mitre link : CVE-2005-2046


JSON object : View

Advertisement

dedicated server usa

Products Affected

duware

  • duamazon_pro