VULHUB ™

It has been reported that AlaCart Shopping Cart is prone to SQL injection attacks. The problem occurs when handling user-supplied username and password data supplied to authentication procedures. To exploit this vulnerability, an attacker may inject the username and password with specially formatted SQL code, and effectively manipulate the logic of the statement. When the statement execution is completed, the attacker will be successfully logged in as an administrator.

It has been reported that AlaCart Shopping Cart is prone to SQL injection attacks. The problem occurs when handling user-supplied username and password data supplied to authentication procedures. To exploit this vulnerability, an attacker may inject the username and password with specially formatted SQL code, and effectively manipulate the logic of the statement. When the statement execution is completed, the attacker will be successfully logged in as an administrator.