CVE-2007-2890

Publication date

2007-05-30 01:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in category.php in cpCommerce 1.1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id_category parameter.