Lynx Internet Solutions : Security Vulnerabilities, CVEs, Published In 2006 (Sql injection)
SQL injection vulnerability in products.asp in Evolve shopping cart (aka Evolve Merchant) allows remote attackers to execute arbitrary SQL commands via the partno parameter. NOTE: the vendor disputes this issue, stating that it is a forced SQL error
Max CVSS
7.5
EPSS Score
0.53%
Published
2006-12-01
Updated
2024-04-11
SQL injection vulnerability in viewcart.asp in Evolve shopping cart (aka Evolve Merchant) allows remote attackers to execute arbitrary SQL commands via the zoneid parameter.
Max CVSS
7.5
EPSS Score
0.71%
Published
2006-11-17
Updated
2018-10-17
2 vulnerabilities found