CVE-2003-0522

Name of the Vulnerable Software and Affected Versions: ProductCart versions 1.5 through 2

Description: The issue allows remote attackers to gain unauthorized access and privileges. This can be achieved through SQL injection vulnerabilities, specifically by manipulating the idadmin parameter to login.asp or the Email parameter to Custva.asp.

Recommendations: For ProductCart versions 1.5 through 2, consider restricting access to the login.asp and Custva.asp pages until a fix is available. As a temporary workaround, avoid using the idadmin and Email parameters in the affected API endpoints.