CVE-2007-2890

SQL injection vulnerability in category.php in cpCommerce 1.1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id_category parameter.

Date published : 2007-05-29

http://www.securityfocus.com/bid/24138

https://www.exploit-db.com/exploits/3981