CVE-2008-4599
CVE-2008-4599 : SQL injection in Mosaic Commerce, implemented in category.php, allows remote attackers to inject arbitrary SQL via the cid parameter. Root cause is likely unparameterized queries in that script. Affected: Mosaic Commerce (category.php). Impact per NVD: partial confidentiality, int...