Secunia Security Advisory – rr has reported a vulnerability in the Direct URL module for xt:Commerce, which can be exploited by malicious people to conduct SQL injection attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/85147/sa38197.txt
Source: https://packetstormsecurity.com/files/85147/Secunia-Security-Advisory-38197.html