VYPR
Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026

CVE-2004-2173

CVE-2004-2173

Description

SQL injection vulnerability in advSearch_h.asp in EarlyImpact ProductCart allows remote attackers to execute arbitrary SQL commands via the priceUntil parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

18
  • cpe:2.3:a:early_impact:productcart:1.5:*:*:*:*:*:*:*+ 17 more
    • cpe:2.3:a:early_impact:productcart:1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:1.5002:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:1.5003:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:1.5003r:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:1.5004:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:1.6002:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:1.6003:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:1.6b:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:1.6b001:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:1.6b002:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:1.6b003:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:1.6br:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:1.6br001:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:1.6br003:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:2.0br000:*:*:*:*:*:*:*
    • cpe:2.3:a:early_impact:productcart:2.5:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.