Description
SQL injection vulnerability in IXXO Cart Standalone before 3.9.6.1, and the IXXO Cart component for Joomla! 1.0.x, allows remote attackers to execute arbitrary SQL commands via the parent parameter.
Exploits (1)
References (5)
Core 5
Core References
Various Sources x_refsource_misc
http://www.davidsopas.com/2009/07/25/ixxo-cart-standalone-and-joomla-component-sql-injection/
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/9276
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/36009
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/505266/100/0/threaded
Exploit, Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/35810
Scores
EPSS
0.0032
EPSS Percentile
54.8%
Details
CWE
CWE-89
Status
published
Products (2)
php-shop-system/ixxo_cart
php-shop-system/ixxo_cart
< 3.9.6.0
Published
Sep 16, 2009
Tracked Since
Feb 18, 2026