SQL injection vulnerability in category.php in cpCommerce 1.1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id_category parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Cpcommerce | Cpcommerce | * | 1.1.0 (including) |