A popular ecommerce platform sold in 60 countries suffers from a SQL injection vulnerability privately disclosed in April that has yet to be patched by the vendor.
Source: Threadpost
Home VIRUS COM AR Vendor BPC Banking Silent on Patching SQL Injection in SmartVista Ecommerce Software