CVE-2009-1345

Publication date

2009-04-20 14:06:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in document.php in cpCommerce 1.2.8 allows remote attackers to execute arbitrary SQL commands via the id_document parameter.