I’ve just uploaded the 1.22.1 release of the osCommerce RSS feed with e-Commerce support, which fixes a security bug that made possible a SQL Injection attack.

Credit and thanks go to Jim Nanney for the heads up. More info here.