Security researchers Mehmet Kelepçe from exploitdb has found vulnerability on Joomla paGo Commerce.
Today’s buyers are moving targets; they’re mobile and global. paGO Commerce™ is a truly commercial grade e-commerce shopping cart for Joomla! that will help you sell to your “moving target” customers, granting you a commercial passport to go anywhere, and sell everywhere. If you’re thinking of moving away from passive CMS technology of yesteryear, and stepping into today’s new active CMS technology that integrates Content, Marketing and Sales technology (CMS) into one seamless close-the-loop process, then move up to paGO Commerce shopping cart.
According the same author version Joomla Pago Commerce 2.5.9.0 is vulnerable, and attackers can easily exploit with SQL Injection (Authenticated method).