Etoshop: >> C2c Forward Auction Creator >> 2.0 Security Vulnerabilities
Multiple SQL injection vulnerabilities in C2C Forward Auction Creator 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) pa parameter to auction/asp/list.asp, or the (2) UserID or (3) Password to auction/casp/admin.asp.
CVSS Score
7.5
EPSS Score
0.041
Published
2013-12-21