Family: CGI abuses --> Category: attack
FishCart SQL injections Vulnerability Scan
Vulnerability Scan Summary
Searches for the existence of an SQL injection in upstnt.asp
Detailed Explanation for this Vulnerability Test
FishCart, in use since January 1998, is a proven Open Source
e-commerce system for products, services, online payment and
online donation management. Written in PHP4, FishCart has
been tested on Windows NT, Linux, and various Unix platforms.
FishCart presently supports the MySQL, PostgreSQL, Solid, Oracle and MSSQL.
FishCart contains multiple SQL injection vulnerabilities in the program
that can be exploited to modify/delete/insert entries into the database.
In addition, the program suffers from cross site scripting vulnerabilities.
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.