SQL injection vulnerability in index.php in evoTopsites 2.x and evoTopsites Pro 2.x allows remote attackers to execute arbitrary SQL commands via the (1) cat_id and (2) id parameters.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Evotopsites | Evo-dev | 2.0 (including) | 2.0 (including) |
Evotopsites_pro | Evo-dev | 2.0 (including) | 2.0 (including) |