CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Duware: >> Duamazon Pro Security Vulnerabilities

CVE-2005-2046

Multiple SQL injection vulnerabilities in DUware DUamazon Pro 3.0 and 3.1 allow remote attackers to execute arbitrary SQL commands via the (1) iCat parameter to cat.asp, (2) iSub parameter to sub.asp, (3) iSub parameter to detail.asp, (4) iPro parameter to review.asp, iCat parameter to (5) catEdit.asp, (6) catDelete.asp, (7) productEdit.asp, or (8) productDelete.asp, or (9) iType parameter to type.asp.

CVSS Score

7.5

EPSS Score

0.003

Published

2005-06-22

Page 1

Vulnerabilities

Vulnerable Software

Duware: >> Duamazon Pro Security Vulnerabilities

Products

Pricing

Contact Us