Intrusion Prevention

AJ.Auction.subcat.php.SQL.Injection

Description

SQL injection vulnerability in subcat.php in AJ Auction allows remote attackers to execute arbitrary SQL commands via the cate_id parameter.

Affected Products

AJ Auction 1.0

Impact

SQL Injection.

Recommended Actions

Currently we are not aware of any official supplied fix for this issue.

CVE References

CVE-2007-1298