< Back to JetLib.com

jetlib.sec » Bugtraq » SQL Injection Vulnerability in Batavi 1.1.2

« Expand/Collapse

Bugtraq

February 07, 2012
SQL Injection Vulnerability in Batavi 1.1.2

Posted: February 7th, 2012, 8:21am PST

Tags:

Posted by Netsparker Advisories on Feb 07
Information
--------------------
Name : SQL Injection Vulnerability in Batavi
Software : Batavi 1.1.2 and possibly below.
Vendor Homepage : http://www.batavi.org
Vulnerability Type : SQL Injection
Severity : Critical
Researcher : Onur Yılmaz
Advisory Reference : NS-12-003

Description
--------------------
Batavi is an open source e-commerce platform.

Details
--------------------
Batavi is affected by a SQL Injection vulnerability...

← CVE-2012-0803: Apache CXF does not va... [security bulletin] HPSBMU02736 SSRT1... →