[HSC Security Group] SQL Injection in Product Cart 2.6

[zinho () hackerscenter com]

Hackers Center Security Group (http://www.hackerscenter.com/)          
Zinho's Security Advisory           

Desc: SQL Injection in Product Cart 2.6 
Risk: Medium to High

An SQL injection affects Product Cart 2.6. Database Manipulation is possible.

viewPrd.asp?idcategory='

Vendor: http://www.earlyimpact.com/
"Our ecommerce software is used all over the world to build and manage professional Internet stores. As one of the most 
comprehensive ecommerce systems available today, ProductCart combines a long list of features with intuitive management 
tools that make it easy for anyone to build and manage their online storefront."


We are looking for security researchers into web application security field to join our crew. If you're interested get 
in contact with Zinho at
zinho () hackerscenter com