2004-03-18 05:00:00
mitre
PUBLISHED
SQL injection vulnerability in viewCart.asp in SpiderSales shopping cart software allows remote attackers to execute arbitrary SQL via the userId parameter.