MidnightBSD

Advisories for ihtml_merchant

CVE-1999-0890 HIGH

iHTML Merchant allows remote attackers to obtain sensitive information or execute commands via a code parsing error.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
ihtml_merchant ihtml_merchant *
CVE-2005-4331 HIGH

SQL injection vulnerability in merchant.ihtml in iHTML Merchant Version 2 Pro allows remote attackers to execute arbitrary SQL commands via the (1) step, (2) id, and (3) pid parameters.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
ihtml_merchant ihtml_merchant 2_pro