CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-2601

SQL injection vulnerability in MidiCart allows remote attackers to execute arbitrary SQL commands via the code_no parameter to (1) Item_Show.asp or (2) search_list.asp.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.2%

CVSS Severity

CVSS v2 Score 7.5

References

http://securitytracker.com/id?1014660
http://systemsecure.org/ssforum/viewtopic.php?t=30
http://www.securityfocus.com/bid/14544
http://securitytracker.com/id?1014660
http://systemsecure.org/ssforum/viewtopic.php?t=30
http://www.securityfocus.com/bid/14544

Products affected by CVE-2005-2601

Midicart Software » Midicart Php Shopping Cart » Version: Any

cpe:2.3:a:midicart_software:midicart_php_shopping_cart:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-2601

Products

Pricing

Contact Us