Open Solution : Security Vulnerabilities, CVEs, Published In 2005 (Sql injection)
SQL injection vulnerability in index.php for Quick.cart 0.3.0 allows remote attackers to execute arbitrary SQL commands via the iCategory parameter. NOTE: the vendor has privately disputed this issue, saying that Quick.cart does not even use SQL and therefore can not be vulnerable to SQL injection
Max CVSS
7.5
EPSS Score
0.19%
Published
2005-05-11
Updated
2024-04-11
Multiple SQL injection vulnerabilities in Quick.Forum 2.1.6 allow remote attackers to execute arbitrary SQL commands via the (1) iCategory or (2) page parameter to index.php, or (3) iCategory parameter in the query string to the forum directory.
Max CVSS
7.5
EPSS Score
0.15%
Published
2005-05-11
Updated
2008-09-05
2 vulnerabilities found