SQL injection vulnerability in includes/content/viewCat.inc.php in CubeCart 3.0.12 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary SQL commands via the searchArray[] parameter.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-09-01T23:00:00Z

Updated: 2024-09-17T01:51:40.466Z

Reserved: 2006-09-01T00:00:00Z

Link: CVE-2006-4526

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2006-09-01T23:04:00.000

Modified: 2008-09-05T21:09:55.363

Link: CVE-2006-4526

cve-icon Redhat

No data.