2008-08-19 19:10:00
mitre
PUBLISHED
SQL injection vulnerability in product.php in PHPBasket allows remote attackers to execute arbitrary SQL commands via the pro_id parameter.