VP.ASP.Shopping.Cart.Shopcurrency.ASP.SQL.Injection
Description
A SQL injection vulnerability in shopcurrency.asp in VP-ASP 6.00 allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Affected Products
VP-ASP Shopping Cart versions prior to 6.08.
Impact
Execute arbitrary SQL commands.
Recommended Actions
Upgrade to VP-ASP Shopping Cart version 6.08:
http://www.vpasp.com/helpnotes/shopexd.asp?id=814
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2018-09-27 | 13.459 |