CVE-2005-1967

ProductCart Ecommerce < 2.7 - SQL Injection via idcategory, lid, icd, or idccr Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2005-1967. PoCs published by Dedi Dwianto.

AI-analyzed exploit summary The provided text describes a SQL injection vulnerability in ProductCart, specifically in the 'viewPrd.asp' page where user-supplied input is not properly sanitized. The example URL demonstrates how an attacker could inject malicious SQL queries via the 'idcategory' and 'idproduct' parameters.

Description

Multiple SQL injection vulnerabilities in ProductCart Ecommerce before 2.7 allow remote attackers to execute arbitrary SQL commands via the (1) idcategory parameter to viewPrd.asp, (2) lid parameter to editCategories.asp, (3) icd parameter to modCustomCardPaymentOpt.asp, or (4) idccr parameter to OptionFieldsEdit.asp.

Exploits (4)

exploitdb WRITEUP VERIFIED
by Dedi Dwianto · textwebappsasp
https://www.exploit-db.com/exploits/25795

The provided text describes a SQL injection vulnerability in ProductCart, specifically in the 'viewPrd.asp' page where user-supplied input is not properly sanitized. The example URL demonstrates how an attacker could inject malicious SQL queries via the 'idcategory' and 'idproduct' parameters.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: ProductCart (version not specified)
No auth needed
Prerequisites: Access to the vulnerable ProductCart application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Dedi Dwianto · textwebappsasp
https://www.exploit-db.com/exploits/25798

The provided text describes a SQL injection vulnerability in ProductCart, specifically in the OptionFieldsEdit.asp page. It outlines the vulnerability's cause and potential impact but does not include actual exploit code.

Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: ProductCart (version not specified)
No auth needed
Prerequisites: Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Dedi Dwianto · textwebappsasp
https://www.exploit-db.com/exploits/25797

The provided text describes a SQL injection vulnerability in ProductCart, specifically in the 'pcadmin/modCustomCardPaymentOpt.asp' endpoint. It outlines the vulnerable parameters and potential impacts but does not include executable exploit code.

Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: ProductCart (version not specified)
No auth needed
Prerequisites: Access to the vulnerable endpoint · Ability to craft malicious SQL queries
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Dedi Dwianto · textwebappsasp
https://www.exploit-db.com/exploits/25796

The provided text describes a SQL injection vulnerability in ProductCart, specifically in the 'editCategories.asp' page. It lacks executable code but outlines the vulnerability and potential impact.

Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: ProductCart (version not specified)
No auth needed
Prerequisites: Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1014129

Scores

EPSS 0.0107
EPSS Percentile 60.3%

Details

Status published
Products (1)
early_impact/productcart_ecommerce < 2.7
Published Jun 16, 2005
Tracked Since Feb 18, 2026