2019-08-26 17:15:12 2019-09-03 16:17:26

Gesior-AAC before 2019-05-01 allows ServiceCategoryID SQL injection in shop.php.