CVE-2009-1622

Metadata

CVE-2009-1622
7.5
securityfocus.com, exploit-db.com
2009-05-12
2017-09-29 06:09

Description

SQL injection vulnerability in user.php in EcShop 2.5.0 allows remote attackers to execute arbitrary SQL commands via the order_sn parameter in an order_query action.

Related Vulnerabilities