TUCoPS :: Web :: e-commerce, shopping carts

TUCoPS :: Web :: e-commerce, shopping carts :: bx3023.htm
Fixed: LiveCart SQL injection vulnerability fixed since version 1.1.2

Fixed: LiveCart SQL injection vulnerability fixed since version 1.1.2 Fixed: LiveCart SQL injection vulnerability fixed since version 1.1.2


LiveCart 'id' parameter SQL injection vulnerability has been fixed in 
the recent LiveCart 1.1.2 release.

Original vulnerability reference:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1750 

LiveCart 1.1.2 release announcement:
http://livecart.com/news/LiveCart-1-1-2-released.12 

-- 
Best regards,
Rinalds Uzkalns
UAB Integry Systems