SQL injection vulnerability in index.php in TurnkeyWebTools SunShop Shopping Cart 4.0 RC 6 allows remote attackers to execute arbitrary SQL commands via the s[cid] parameter in a search_list action, a different vector than CVE-2007-2549.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-08-30T17:00:00

Updated: 2024-08-07T15:01:09.786Z

Reserved: 2007-08-30T00:00:00

Link: CVE-2007-4597

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-08-30T18:17:00.000

Modified: 2024-11-21T00:35:58.890

Link: CVE-2007-4597

cve-icon Redhat

No data.