CVE-2009-1027

SQL injection vulnerability in OpenCart 1.1.8 allows remote attackers to execute arbitrary SQL commands via the order parameter.

Date published : 2009-03-19

http://www.securityfocus.com/bid/34121

http://www.securityfocus.com/archive/1/501843/100/0/threaded