Vulnerability Details CVE-2005-2445
SQL injection vulnerability in viewPrd.asp in Product Cart 2.6 allows remote attackers to execute arbitrary SQL commands via the idcategory parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 75.6%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=112274710020521&w=2
- http://secunia.com/advisories/14833
- http://securitytracker.com/id?1014129
- http://www.osvdb.org/17329
- http://www.osvdb.org/18508
- http://www.securityfocus.com/bid/13881
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20956
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21672
- http://marc.info/?l=bugtraq&m=112274710020521&w=2
- http://secunia.com/advisories/14833
- http://securitytracker.com/id?1014129
- http://www.osvdb.org/17329
- http://www.osvdb.org/18508
- http://www.securityfocus.com/bid/13881
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20956
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21672
Products affected by CVE-2005-2445
-
cpe:2.3:a:early_impact:product_cart:2.6