-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
CVE-2014-3978 - Remote SQL Injection Vulnerability
CVE-2014-3830 - Reflected Cross Site Scripting
-
--
Title:
TomatoCart v1.x (latest-stable) Remote SQL Injection Vulnera
On May 27th our research labs discovered a vulnerability (CVE-2014-3868)
in an e-commerce shopping cart application known as "ZeusCart". The
same day,
we reported this vulnerability to mitre.org and the CVE was assigned.
We were
able to get in touch with the vendor with a confirmed response relat
