Intrusion Prevention

MidiCart.ASP.Search.List.ASP.SQL.Injection

Description

It indicates a possible exploit of a SQL injection vulnerability in MidiCart PHP Shopping Cart that may allow remote attackers to execute arbitrary SQL commands via the searchstring parameter in search_list.php.

Affected Products

MidiCart Software MidiCart ASP

Impact

Compromise of affected system

Recommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.

CVE References

CVE-2005-1503