OpenCart 1.5.6.1 SQL Injection Vulnerability

OpenCart versions 1.5.6.1 and below suffer from a remote SQL injection vulnerability. Exploit Title : OpenCart log'getEbayItemId - Product ID: '.$productid; $qry = $this-db-query"SELECT ebayitemid FROM " . DBPREFIX . "ebaylisting WHERE productid = '".$productid."' AND status = '1' LIMIT 1";...