Vulnerability Description
Multiple SQL injection vulnerabilities in Dragonfly Commerce allows remote attackers to modify SQL statements and possibly execute arbitrary SQL commands via the (1) key parameter to dc_Categoriesview.asp, (2) dc_productslist_Clearance.asp, (3) PID parameter to ratings.asp, (4) dc_Productsview.asp, (5) start, (6) key_mp, (7) searchtype, or (8) psearch parameters to dc_forum_Postslist.asp. NOTE: the vendor has disputed this issue, saying that the error messages arise from invalid category and product numbers. Assuming that this is the case, the issue still satisfies the CVE definition of "exposure.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Incredible Interactive | Dragonfly Commerce | All versions |
References
- http://marc.info/?l=bugtraq&m=112121930328341&w=2
- http://www.digitalparadox.org/viewadvisories.ah?view=46
- http://marc.info/?l=bugtraq&m=112121930328341&w=2
- http://www.digitalparadox.org/viewadvisories.ah?view=46
FAQ
What is CVE-2005-2221?
CVE-2005-2221 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple SQL injection vulnerabilities in Dragonfly Commerce allows remote attackers to modify SQL statements and possibly execute arbitrary SQL commands via the (1) key parameter to dc_Categoriesview...
How severe is CVE-2005-2221?
CVE-2005-2221 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-2221?
Check the references section above for vendor advisories and patch information. Affected products include: Incredible Interactive Dragonfly Commerce.