CVE-2006-4297

Publication date

2006-08-23 01:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in shopping_cart.php in osCommerce before 2.2 Milestone 2 060817 allows remote attackers to execute arbitrary SQL commands via id array parameters.