Opencart Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2009-1027 - Vulnerability Database

Opencart Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2009-1027

High
Reference: CVE-2009-1027
Title: Opencart Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Overview:

SQL injection vulnerability in OpenCart 1.1.8 allows remote attackers to execute arbitrary SQL commands via the order parameter.