SQL injection vulnerability in users.asp in QuadComm Q-Shop 3.0, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the (1) UserID and (2) Pwd parameters. NOTE: this might be related to CVE-2004-2108.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2009-02-24T18:00:00
Updated: 2024-08-07T11:27:34.827Z
Reserved: 2009-02-24T00:00:00
Link: CVE-2008-6258
Vulnrichment
No data.
NVD
Status : Modified
Published: 2009-02-24T18:30:00.407
Modified: 2024-11-21T00:56:04.573
Link: CVE-2008-6258
Redhat
No data.