Vulnerability Details CVE-2005-1221
SQL injection vulnerability in login.asp for Ecommerce-Carts EcommPro 3.0 allows remote attackers to execute arbitrary SQL commands via the password field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=111402179605925&w=2
- http://www.ihssecurity.com/download/advisory/ecomerce-cart.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20200
- http://marc.info/?l=bugtraq&m=111402179605925&w=2
- http://www.ihssecurity.com/download/advisory/ecomerce-cart.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20200
Products affected by CVE-2005-1221
-
cpe:2.3:a:ecommerce-carts:ecommpro:3.0