mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 17:22:02 +00:00
778 B
778 B
CVE-2015-1476
Description
Multiple SQL injection vulnerabilities in xlinkerz ecommerceMajor allow remote attackers to execute arbitrary SQL commands via the (1) productbycat parameter to product.php, or (2) username or (3) password parameter to __admin/index.php.
POC
Reference
- http://packetstormsecurity.com/files/130073/ecommerceMajor-SQL-Injection.html
- http://www.exploit-db.com/exploits/35878
Github
No PoCs found on GitHub currently.