Vulnerability   
Search   
    Search 202850 CVE descriptions
and 87302 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.11692
Category:CGI abuses
Title:WebStores 2000 browse_item_details.asp SQL injection
Summary:NOSUMMARY
Description:Description:

The remote web server is running WebStore 2000, a set of ASP
scripts designed to set up an e-commerce store.

There is a flaw in the version of WebStore which is being
used which may allow an attacker to make arbitrary SQL statements
to the backend database being used.

An attacker may use this flaw to take the control of your
database.


Solution : None at this time
Risk factor : High

Cross-Ref: BugTraq ID: 7766
Common Vulnerability Exposure (CVE) ID: CVE-2004-0304
http://www.securityfocus.com/bid/7766
Bugtraq: 20040218 WebCortex Webstores2000 version 6.0 multiple security vulnerabilities (Google Search)
http://marc.info/?l=bugtraq&m=107712159425226&w=2
http://www.s-quadra.com/advisories/Adv-20040218.txt
XForce ISS Database: webstores-browseitems-sql-injection(15253)
https://exchange.xforce.ibmcloud.com/vulnerabilities/15253
CopyrightThis script is Copyright (C) 2003 Tenable Network Security

This is only one of 87302 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.