Etoshop » C2c Forward Auction Creator : Security Vulnerabilities, CVEs, (Sql injection) CVSS score >= 5
Multiple SQL injection vulnerabilities in C2C Forward Auction Creator 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) pa parameter to auction/asp/list.asp, or the (2) UserID or (3) Password to auction/casp/admin.asp.
Max CVSS
7.5
EPSS Score
0.24%
Published
2013-12-21
Updated
2017-08-29
1 vulnerabilities found