CVE-2007-5261

CVE-2007-5261 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:P

Multiple SQL injection vulnerabilities in MultiCart 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) catid parameter to categorydetail.php and the (2) ddlCategory parameter to search.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.