Multiple SQL Injection Vulnerabilities in DUware DUpaypal Pro 3.0

Multiple SQL Injection Vulnerabilities in DUware DUpaypal Pro 3.0

CVE-2005-2047 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in DUware DUpaypal Pro 3.0 allow remote attackers to execute arbitrary SQL commands via the (1) iCat parameter to cat.asp, (2) iPro parameter to detail.asp, (3) iSub parameter to sub.asp, (4) iCat parameter to catEdit.asp.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.