|
 IBM
WebSphere Commerce is an ecommerce application. The
application is exposed to an unspecified SQL injection
issue because it fails to sufficiently sanitize
user-supplied data before using it in an SQL query of
the "Commerce Organization Admin Console JavaServer"
pages. WebSphere Commerce versions prior to 6.0.0.10 are
affected.
Ref:
http://xforce.iss.net/xforce/xfdb/62951
10.47.14 - CVE: CVE-2010-2635
Platform: Web Application - SQL Injection |
