SQL injection vulnerability in main_bigware_53.tpl.php in Bigware Shop 2.0 allows remote malicious users to execute arbitrary SQL commands via the pollid parameter in a results action to main_bigware_53.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bigware bigware shop 2.0 |