Multiple SQL injection vulnerabilities in ESMI PayPal Storefront allow remote malicious users to execute arbitrary SQL commands via the (1) idpages parameter to pages.php or the (2) id2 parameter to products1.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
esmi paypal storefront 1.7 |