[原文]Multiple SQL injection vulnerabilities in Valdersoft Shopping Cart 3.0 allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to category.php, (2) the id parameter to item.php, (3) the lang parameter to index.php, (4) the searchQuery parameter to search_result.php, (5) or the searchTopCategoryID parameter to search_result.php.
Valdersoft Shopping Cart category.php id Parameter SQL Injection
Remote / Network Access
Loss of Confidentiality,
Loss of Integrity
Valdersoft Shopping Cart contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the 'id' variable in the category.php script is not verified properly and will allow an attacker to inject or manipulate SQL queries.
Upgrade to version 3.0 or higher, obtained from the vendor site on or after March 30, 2005, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.
NOTE: The vendor has fixed the vulnerability without changing the version number.