Multiple SQL injection vulnerabilities in Koan Software Mega Mall allow remote malicious users to execute arbitrary SQL commands via the (1) t, (2) productId, (3) sk, (4) x, or (5) so parameter to (a) product_review.php; or the (6) orderNo parameter to (b) order-track.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
koan software mega mall |