SQL injection vulnerability in Interakt MX Shop 3.2.0 allows remote attackers to execute arbitrary SQL commands via the (1) idp, (2) id_ctg, or (3) id_prd parameters to the pages module in index.php.
https://exchange.xforce.ibmcloud.com/vulnerabilities/22328
http://www.systemsecure.org/ssforum/viewtopic.php?t=250