CVE-2007-3933

SQL injection vulnerability in insertorder.cfm in QuickEStore 8.2 and earlier allows remote attackers to execute arbitrary SQL commands via the CFTOKEN parameter, a different vector than CVE-2006-2053.
Configurations

Configuration 1

cpe:2.3:a:quickestore:quickestore:*:*:*:*:*:*:*:*

Information

Published : 2007-07-21 12:30

Updated : 2017-09-29 01:29


NVD link : CVE-2007-3933

Mitre link : CVE-2007-3933

Products Affected
No products.
CWE