CVE-2003-0522

Publication date

2003-07-10 04:00:00

Family

mitre

State

PUBLISHED

Description

Multiple SQL injection vulnerabilities in ProductCart 1.5 through 2 allow remote attackers to (1) gain access to the admin control panel via the idadmin parameter to login.asp or (2) gain other privileges via the Email parameter to Custva.asp.