SQL injection vulnerability in products_rss.php in ViArt Shop 3.5 and earlier allows remote attackers to execute arbitrary SQL commands via the category_id parameter.
Software | From | Fixed in |
---|---|---|
viart / viart_shop | - | 3.5.x |
viart / viart_shop | 2.5.5 | 2.5.5.x |
viart / viart_shop | 3.2 | 3.2.x |
viart / viart_shop | 3.3 | 3.3.x |
viart / viart_shop | 3.3-beta | 3.3-beta.x |
viart / viart_shop | 3.3.2 | 3.3.2.x |