VULHUB ™

It has been reported that Tek9 Shopping Cart is prone to SQL injection attacks when handling passwords. The problem likely occurs due to the application failing to properly escape user-supplied input. As a result, an attacker may be capable of injecting SQL control characters into a password and manipulate the logic of the affected statement. The exploitation of this issue could ultimately allow an attacker to log in as an administrator.

It has been reported that Tek9 Shopping Cart is prone to SQL injection attacks when handling passwords. The problem likely occurs due to the application failing to properly escape user-supplied input. As a result, an attacker may be capable of injecting SQL control characters into a password and manipulate the logic of the affected statement. The exploitation of this issue could ultimately allow an attacker to log in as an administrator.