Quadcomm : Security Vulnerabilities, CVEs, Published In 2009 (Sql injection)
SQL injection vulnerability in users.asp in QuadComm Q-Shop 3.0, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the (1) UserID and (2) Pwd parameters. NOTE: this might be related to CVE-2004-2108.
Max CVSS
7.5
EPSS Score
0.10%
Published
2009-02-24
Updated
2017-09-29
1 vulnerabilities found