OXID eSales SQL Injection Vulnerability
OXID eSales is a set of e-commerce content management system from OXID eSales, Germany. The system includes modules for B2C and B2B. A SQL injection vulnerability exists in the DB abstraction layer of OXID eSales version 4.10.6, which can be exploited by a remote attacker to execute SQL by sendin...