CVE-2004-1806

Publication date

2005-05-10 04:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in index.cfm in CFWebstore 5.0 allows remote attackers to execute SQL commands via the (1) category_id, (2) product_id, or (3) feature_id parameters.