eBay Clone Script 2010 "showcategory.php" SQL Injection

Wednesday, July 7, 2010


eBay Clone Script 2010 is a PHP-based eBay clone. The application is exposed to an SQL injection issue because it fails to sufficiently sanitize user-supplied input to the "cid" parameter of the "showcategory.php" script.

Ref: http://www.securityfocus.com/bid/41200/references

10.27.88 - CVE: Not Available
Platform: Web Application - SQL Injection
Posted by d3ck4 at 7:01 PM

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Most Recent Post

MORE ON ARCHIVE
Widget by Mad Tomato

Help Me Expose This Article in Bulk!

Bookmark & Share

- OR -

SELECT YOUR PREFERRED ONE:

Bookmark and Share