Ec Cube · Ec-Cube · CVE-2011-3988
**Name of the Vulnerable Software and Affected Versions**
EC-CUBE versions 2.11.0 through 2.11.2
**Description**
The issue allows remote attackers to execute arbitrary SQL commands.
**Recommendations**
For versions 2.11.0 through 2.11.2, update to a version that contains a fix for this issue.