SQL injection vulnerability in xt:Commerce prior to 3.0.4 Sp2.1, when magic_quotes_gpc is enabled and the SEO URLs are activated, allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xt-commerce xt-commerce 3.0.4 |
||
xt-commerce xt-commerce |