Quadcomm.QShop.SQL.Injection

description-logoDescription

This indicates a possible attempt to exploit a SQL injection vulnerability in Quadcomm Q-Shop.
Quadcomm Q-Shop contains a SQL injection vulnerability because it fails to properly sanitize user supplied input before using it in a SQL query. Successful exploitation could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.

affected-products-logoAffected Products

Quadcomm Q-Shop version 3.5 is vulnerable.

Impact logoImpact

System compromise.

recomended-action-logoRecommended Actions

Apply changes to the source code as described by the vendor.
http://quadcomm.com/qshop/sec_v350x_browseinj.asp

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)