CVE-2003-0509

N/A Unknown

Published: August 07, 2003 Modified: April 16, 2026

Description

SQL injection vulnerability in Cyberstrong eShop 4.2 and earlier allows remote attackers to steal authentication information and gain privileges via the ProductCode parameter in (1) 10expand.asp, (2) 10browse.asp, and (3) 20review.asp.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://marc.info/?l=bugtraq&m=105709450711395&w=2

Source: cve@mitre.org

http://secunia.com/advisories/9165

Source: cve@mitre.org

http://securitytracker.com/id?1007092

Source: cve@mitre.org

http://www.osvdb.org/10098

Source: cve@mitre.org

http://www.osvdb.org/10099

Source: cve@mitre.org

http://www.osvdb.org/10100

Source: cve@mitre.org

http://www.securityfocus.com/bid/14101

Source: cve@mitre.org

http://www.securityfocus.com/bid/14103

Source: cve@mitre.org

http://www.securityfocus.com/bid/14112

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/12485

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=105709450711395&w=2