VULHUB ™

eStore login.php has been reported prone to an SQL Injection Vulnerability. It has been reported that the login.php script contained in the eStore software fails to sufficiently sanitize user input. A remote attacker may exploit this issue to influence SQL query logic. Although unconfirmed, this may allow the attacker to bypass authentication methods. Other attacks, including attacks on the underlying database may also be possible.

eStore login.php has been reported prone to an SQL Injection Vulnerability. It has been reported that the login.php script contained in the eStore software fails to sufficiently sanitize user input. A remote attacker may exploit this issue to influence SQL query logic. Although unconfirmed, this may allow the attacker to bypass authentication methods. Other attacks, including attacks on the underlying database may also be possible.