Vulnerability on "view order" button: need a first-aid solution
Hello,
I got below report from the site security checker app.
------------------------------------------------------------------------------
Using the GET HTTP method, SiteLock found that :
+ The following resources may be vulnerable to arbitrary command execution (time based) :
+ The 'RCUK_View_100' parameter of the /parts/100_rack.php CGI :
/parts/100_rack.php??RCUK_View_100=View%20ordersx%20%7C%7C%20ping%20-n%2
03%20127.0.0.1%20%26
-------- output --------
------------------------
------------------------------------------------------------------------------
It seems “View Cart” button function is vulnerable. I know asking this does not solve the whole issue but is there anything I can do to make it less vulnerable?
I attached the file.
Thank you so much for your help.
Rika