Description

SQL injection vulnerability in OpenCart 1.1.8 allows remote attackers to execute arbitrary SQL commands via the order parameter.

Remediation

References

CVE-2009-1027

Related Vulnerabilities

Oracle JRE CVE-2014-0453 Vulnerability (CVE-2014-0453)

Oracle JRE CVE-2013-5775 Vulnerability (CVE-2013-5775)

Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2016-9585)

Moodle Other Vulnerability (CVE-2004-1711)

Apache 2.x version older than 2.0.63

Severity

High

Classification

CVE-2009-1027 CWE-138

Tags

Missing Update Known Vulnerabilities