SQL injection vulnerability in the EXP Shop (com_expshop) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a show_payment action to index.php.
CPE | Name | Operator | Version |
---|---|---|---|
exp_shop_component | eq | 1.0 |